Atlassian Jira Vulnerability - CVE-2019-20402 - Vulnerability Database

Atlassian Jira Vulnerability - CVE-2019-20402

Medium
Reference: CVE-2019-20402
Title: Atlassian Jira Vulnerability
Overview:

Support zip files in Atlassian Jira Server and Data Center before version 8.6.0 could be downloaded by a System Administrator user without requiring the user to re-enter their password via an improper authorization vulnerability.