Lucene search
AtlassianCVELIST:CVE-2020-14179HistorySep 11, 2020 - 12:00 a.m.
CVE-2020-14179
2020-09-1100:00:00
atlassian
www.cve.org
2
Affected versions of Atlassian Jira Server and Data Center allow remote, unauthenticated attackers to view custom field names and custom SLA names via an Information Disclosure vulnerability in the /secure/QueryComponent!Default.jspa endpoint. The affected versions are before version 8.5.8, and from version 8.6.0 before 8.11.1.
CNA Affected
[
{
"product": "Jira Server",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "8.5.8",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "8.6.0",
"versionType": "custom"
},
{
"lessThan": "8.11.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Information disclosure
2020-09-21 01:15:00
hackerone
hackerone
Endless Group: CVE-2020-14179 on https://jira.theendlessweb.com/secure/QueryComponent!Default.jspa leads to information disclosure
2020-10-09 20:40:23
cve
cve
CVE-2020-14179
2020-09-21 01:15:12
nessus
nessus
nuclei
nuclei
atlassian
atlassian
Information Disclosure ever after CVE-2020-14179/JRASERVER-71536
2021-11-29 15:22:30
Information Disclosure ever after CVE-2020-14179/JRASERVER-71536
2021-11-29 15:22:30
nvd
nvd
CVE-2020-14179
2020-09-21 01:15:12
githubexploit
githubexploit
Exploit for Vulnerability in Atlassian Jira Server
2021-01-08 14:15:24
thn
thn