PT-2018-16822 · Atlassian · Jira

Publicado

2018-05-16

Atualizado

2022-03-25

CVE-2018-5231

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Atlassian Jira versions prior to 7.6.6 Atlassian Jira versions 7.7.0 through 7.7.3 Atlassian Jira versions 7.8.0 through 7.8.3 Atlassian Jira versions 7.9.0 through 7.9.1

Description The issue allows remote attackers to perform a denial of service attack. This can be achieved by sending requests to the ForgotLoginDetails resource.

Recommendations For versions prior to 7.6.6, update to version 7.6.6 or later. For versions 7.7.0 through 7.7.3, update to version 7.7.4 or later. For versions 7.8.0 through 7.8.3, update to version 7.8.4 or later. For versions 7.9.0 through 7.9.1, update to version 7.9.2 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2018-5231

Produtos afetados

Jira

PT-2018-16822 · Atlassian · Jira

CVE-2018-5231

Identificadores relacionados

Produtos afetados

Referências · 4