Atlassian Jira Observable Discrepancy Vulnerability - CVE-2020-4028 - Vulnerability Database

Atlassian Jira Observable Discrepancy Vulnerability - CVE-2020-4028

Medium

Reference: CVE-2020-4028

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-4028

Title: Atlassian Jira Observable Discrepancy Vulnerability

Overview:

Versions before 8.9.1 Various resources in Jira responded with a 404 instead of redirecting unauthenticated users to the login page in some situations this may have allowed unauthorised attackers to determine if certain resources exist or not through an Information Disclosure vulnerability.