Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Atlassian Jira Vulnerability - CVE-2020-14165 - Vulnerability Database
Atlassian Jira

Atlassian Jira Vulnerability - CVE-2020-14165

Medium
Reference: CVE-2020-14165
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-14165
Title: Atlassian Jira Vulnerability
Overview:

The UniversalAvatarResource.getAvatars resource in Jira Server and Data Center before version 8.9.0 allows remote attackers to obtain information about custom project avatars names via an Improper authorization vulnerability.