CVE-2018-20826
4.3MEDIUMThe inline-create rest resource in Jira before version 7.12.3 allows authenticated remote attackers to set the reporter in issues via a missing authorisation check.
게시됨: 8/9/2019업데이트됨: 11/21/2024
설명
The inline-create rest resource in Jira before version 7.12.3 allows authenticated remote attackers to set the reporter in issues via a missing authorisation check.
AI 분석AI 기반
영향받는 제품
atlassianjira
참조
- https://jira.atlassian.com/browse/JRASERVER-69239ExploitIssue TrackingVendor Advisory
- https://jira.atlassian.com/browse/JRASERVER-69239ExploitIssue TrackingVendor Advisory