virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2019-14995 Authorization Bypass Vulnerability

description-logoDescription

The /rest/api/1.0/render resource in Jira before version 8.4.0 allows remote anonymous attackers to determine if an attachment with a specific name exists and if an issue key is valid via a missing permissions check.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2019-14995

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74294
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server