Affected versions of Atlassian Jira Server and Data Center allow remote attackers to redirect users to a malicious URL via a reverse tabnapping vulnerability in the Project Shortcuts feature. The affected versions are before version 8.5.15, from version 8.6.0 before 8.13.7, from version 8.14.0 before 8.17.1, and from version 8.18.0 before 8.18.1.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://jira.atlassian.com/browse/JRASERVER-72433 |
History
Fri, 11 Oct 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: atlassian
Published: 2021-08-25T02:30:10.338013Z
Updated: 2024-10-11T17:19:59.439Z
Reserved: 2021-08-16T00:00:00
Link: CVE-2021-39112
Vulnrichment
Updated: 2024-08-04T01:58:17.761Z
NVD
Status : Modified
Published: 2021-08-25T03:15:06.380
Modified: 2024-11-21T06:18:35.623
Link: CVE-2021-39112
Redhat
No data.