How severe is CVE-2019-8446?

CVE-2019-8446 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2019-8446

Name: jira_server
Author: atlassian

5.3MEDIUM

The /rest/issueNav/1/issueTable resource in Jira before version 8.3.2 allows remote attackers to enumerate usernames via an incorrect authorisation check.

Published: 8/23/2019Updated: 11/21/2024

Description

The /rest/issueNav/1/issueTable resource in Jira before version 8.3.2 allows remote attackers to enumerate usernames via an incorrect authorisation check.

AI AnalysisPowered by AI

Affected Products

atlassianjira_server

References

https://jira.atlassian.com/browse/JRASERVER-69777
Vendor Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0839
ExploitThird Party Advisory
https://jira.atlassian.com/browse/JRASERVER-69777
Vendor Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0839
ExploitThird Party Advisory