Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2021-43953
Reference:
CVE-2021-43953
Title:
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability
Overview:
Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to toggle the Thread Contention and CPU monitoring settings via a Cross-Site Request Forgery (CSRF) vulnerability in the /secure/admin/ViewInstrumentation.jspa endpoint. The affected versions are before version 8.21.0.