Lucene search
HistorySep 16, 2020 - 3:13 a.m.
User Enumeration via /ViewUserHover.jspa - CVE-2020-14181
0.965 High
EPSS
Percentile
99.6%
Affected versions of Atlassian Jira Server and Data Center allow an unauthenticated user to enumerate users via an Information Disclosure vulnerability in the /ViewUserHover.jspa endpoint.
This vulnerability was discovered byย Mikhail Klyuchnikov ofย Positive Technologies.
Affected versions:
- version < 7.13.16
- 8.0.0 โค version < 8.5.7
- 8.6.0 โค version < 8.12.0
Fixed versions:
- 7.13.16
- 8.5.7
- 8.12.0
Related
cvelist
cvelist
CVE-2020-14181
2020-09-16 00:00:00
nvd
nvd
CVE-2020-14181
2020-09-17 01:15:11
atlassian
atlassian
nuclei
nuclei
Jira Server and Data Center - Information Disclosure
2020-09-30 20:36:12
zdt
zdt
Atlassian JIRA 8.11.1 - User Enumeration Exploit
2021-03-10 00:00:00
packetstorm
packetstorm
Atlassian JIRA 8.11.1 User Enumeration
2021-03-10 00:00:00
cve
cve
CVE-2020-14181
2020-09-17 01:15:11
attackerkb
attackerkb
CVE-2020-14181
2020-09-16 00:00:00
checkpoint_advisories
checkpoint_advisories
Atlassian Jira Server Information Disclosure (CVE-2020-14181)
2020-11-05 00:00:00
prion
prion
Information disclosure
2020-09-17 01:15:00
nessus
nessus
exploitdb
exploitdb
Atlassian JIRA 8.11.1 - User Enumeration
2021-03-10 00:00:00
githubexploit
githubexploit
rapid7blog
rapid7blog
Metasploit Wrap-Up
2021-09-17 19:59:18
wallarmlab
wallarmlab