Atlassian Jira Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2021-39125 - Vulnerability Database

Atlassian Jira Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2021-39125

Medium
Reference: CVE-2021-39125
Title: Atlassian Jira Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to discover the usernames of users via an enumeration vulnerability in the password reset page. The affected versions are before version 8.5.10 and from version 8.6.0 before 8.13.1.