PT-2019-19046 · Atlassian · Jira
Publicado
2019-08-13
·
Atualizado
2022-03-25
·
CVE-2019-8448
CVSS v3.1
5.3
Média
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Jira versions prior to 7.13.4
Jira versions 8.0.0 through 8.2.1
Description
The issue allows remote attackers to enumerate usernames via an information disclosure. This affects the login.jsp resource in Jira.
Recommendations
For Jira versions prior to 7.13.4, update to version 7.13.4 or later.
For Jira versions 8.0.0 through 8.2.1, update to version 8.2.2 or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Jira