Atlassian Jira Incorrect Authorization Vulnerability - CVE-2019-3403
Reference:
CVE-2019-3403
Title:
Atlassian Jira Incorrect Authorization Vulnerability
Overview:
The /rest/api/2/user/picker rest resource in Jira before version 7.13.3 from version 8.0.0 before version 8.0.4 and from version 8.1.0 before version 8.1.1 allows remote attackers to enumerate usernames via an incorrect authorisation check.