The ManageFilters.jspa resource in Jira before version 7.13.3 and from version 8.0.0 before version 8.1.1 allows remote attackers to enumerate usernames via an incorrect authorisation check.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://jira.atlassian.com/browse/JRASERVER-69244 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: atlassian
Published: 2019-05-22T17:27:33.449986Z
Updated: 2024-09-17T04:03:54.061Z
Reserved: 2018-12-19T00:00:00
Link: CVE-2019-3401
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-05-22T18:29:00.740
Modified: 2024-11-21T04:42:02.147
Link: CVE-2019-3401
Redhat
No data.