CVE-2018-20826
4.3MEDIUMThe inline-create rest resource in Jira before version 7.12.3 allows authenticated remote attackers to set the reporter in issues via a missing authorisation check.
Publicado: 8/9/2019Actualizado: 11/21/2024
Descripción
The inline-create rest resource in Jira before version 7.12.3 allows authenticated remote attackers to set the reporter in issues via a missing authorisation check.
Análisis IAImpulsado por IA
Productos Afectados
atlassianjira
Referencias
- https://jira.atlassian.com/browse/JRASERVER-69239ExploitIssue TrackingVendor Advisory
- https://jira.atlassian.com/browse/JRASERVER-69239ExploitIssue TrackingVendor Advisory