An issue summary information disclosure vulnerability exists in Atlassian Jira Tempo plugin, version 4.10.0. Authenticated users can obtain the summary for issues they do not have permission to view via the Tempo plugin.
[
{
"product": "Atlassian",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Atlassian Jira 7.6.4 Atlassian Jira Tempo Core system plugin 4.10.0"
}
]
}
]