Atlassian Jira Improper Privilege Management Vulnerability - CVE-2018-13400

Several administrative resources in Atlassian Jira before version 7.6.9 from version 7.7.0 before version 7.7.5 from version 7.8.0 before version 7.8.5 from version 7.9.0 before version 7.9.3 from version 7.10.0 before version 7.10.3 from version 7.11.0 before version 7.11.3 from version 7.12.0 before version 7.12.3 and before version 7.13.1 allow remote attackers who have obtained access to administrator39s session to access certain administrative resources without needing to re-authenticate to pass quotWebSudoquot through an improper access control vulnerability.