Unrated severityNVD Advisory· Published Oct 26, 2021· Updated Oct 9, 2024
CVE-2021-41306
CVE-2021-41306
Description
Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view private project and filter names via an Insecure Direct Object References (IDOR) vulnerability in the Average Time in Status Gadget. The affected versions are before version 8.13.12, and from version 8.14.0 before 8.20.0.
Affected products
2- Range: unspecified
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- jira.atlassian.com/browse/JRASERVER-72915mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.