VYPR
Unrated severityNVD Advisory· Published Sep 11, 2019· Updated Sep 16, 2024

CVE-2019-14997

CVE-2019-14997

Description

The AccessLogFilter class in Jira before version 8.4.0 allows remote anonymous attackers to learn details about other users, including their username, via an information expose through caching vulnerability when Jira is configured with a reverse Proxy and or a load balancer with caching or a CDN.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Atlassian/Jirallm-fuzzy2 versions
    <8.4.0+ 1 more
    • (no CPE)range: <8.4.0
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.