Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Atlassian Jira Vulnerability - CVE-2020-36286 - Vulnerability Database
Atlassian Jira

Atlassian Jira Vulnerability - CVE-2020-36286

Medium
Reference: CVE-2020-36286
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-36286
Title: Atlassian Jira Vulnerability
Overview:

The membersOf JQL search function in Jira Server and Data Center before version 8.5.13 from version 8.6.0 before version 8.13.5 and from version 8.14.0 before version 8.15.1 allows remote anonymous attackers to determine if a group exists amp members of groups if they are assigned to publicly visible issue field.