virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2019-20106 Incorrect Default Permissions Vulnerability

description-logoDescription

Comment properties in Atlassian Jira Server and Data Center before version 7.13.12, from 8.0.0 before version 8.5.4, and 8.6.0 before version 8.6.1 allows remote attackers to make comments on a ticket to which they do not have commenting permissions via a broken access control bug.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2019-20106

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74303
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server