Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Atlassian Jira Vulnerability - CVE-2019-8442 - Vulnerability Database
Atlassian Jira

Atlassian Jira Vulnerability - CVE-2019-8442

High
Reference: CVE-2019-8442
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-8442
Title: Atlassian Jira Vulnerability
Overview:

The CachingResourceDownloadRewriteRule class in Jira before version 7.13.4 and from version 8.0.0 before version 8.0.4 and from version 8.1.0 before version 8.1.1 allows remote attackers to access files in the Jira webroot under the META-INF directory via a lax path access check.