Atlassian Jira Vulnerability - CVE-2020-36286 - Vulnerability Database

Atlassian Jira Vulnerability - CVE-2020-36286

Medium
Reference: CVE-2020-36286
Title: Atlassian Jira Vulnerability
Overview:

The membersOf JQL search function in Jira Server and Data Center before version 8.5.13 from version 8.6.0 before version 8.13.5 and from version 8.14.0 before version 8.15.1 allows remote anonymous attackers to determine if a group exists amp members of groups if they are assigned to publicly visible issue field.