Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Atlassian Jira Vulnerability - CVE-2019-20402 - Vulnerability Database
Atlassian Jira

Atlassian Jira Vulnerability - CVE-2019-20402

Medium
Reference: CVE-2019-20402
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-20402
Title: Atlassian Jira Vulnerability
Overview:

Support zip files in Atlassian Jira Server and Data Center before version 8.6.0 could be downloaded by a System Administrator user without requiring the user to re-enter their password via an improper authorization vulnerability.