Lucene search
PRIOn knowledge basePRION:CVE-2020-14179HistorySep 21, 2020 - 1:15 a.m.
Information disclosure
2020-09-2101:15:00
PRIOn knowledge base
www.prio-n.com
11
Affected versions of Atlassian Jira Server and Data Center allow remote, unauthenticated attackers to view custom field names and custom SLA names via an Information Disclosure vulnerability in the /secure/QueryComponent!Default.jspa endpoint. The affected versions are before version 8.5.8, and from version 8.6.0 before 8.11.1.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jira_data_center | ge | 8.6.0 | |
| jira_data_center | lt | 8.11.1 | |
| jira_data_center | lt | 8.5.8 | |
| jira_server | lt | 8.5.8 | |
| jira_server | ge | 8.6.0 | |
| jira_server | lt | 8.11.1 |
Related
hackerone
hackerone
Endless Group: CVE-2020-14179 on https://jira.theendlessweb.com/secure/QueryComponent!Default.jspa leads to information disclosure
2020-10-09 20:40:23
cve
cve
CVE-2020-14179
2020-09-21 01:15:12
nessus
nessus
nuclei
nuclei
cvelist
cvelist
CVE-2020-14179
2020-09-11 00:00:00
atlassian
atlassian
Information Disclosure ever after CVE-2020-14179/JRASERVER-71536
2021-11-29 15:22:30
Information Disclosure ever after CVE-2020-14179/JRASERVER-71536
2021-11-29 15:22:30
nvd
nvd
CVE-2020-14179
2020-09-21 01:15:12
githubexploit
githubexploit
Exploit for Vulnerability in Atlassian Jira Server
2021-01-08 14:15:24
thn
thn