Unrated severityNVD Advisory· Published Sep 11, 2019· Updated Sep 16, 2024
CVE-2019-14997
CVE-2019-14997
Description
The AccessLogFilter class in Jira before version 8.4.0 allows remote anonymous attackers to learn details about other users, including their username, via an information expose through caching vulnerability when Jira is configured with a reverse Proxy and or a load balancer with caching or a CDN.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- jira.atlassian.com/browse/JRASERVER-69794mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.