Unrated severityNVD Advisory· Published Aug 3, 2022· Updated Oct 29, 2024
CVE-2022-36800
CVE-2022-36800
Description
Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers without the "Browse Users" permission to view groups via an Information Disclosure vulnerability in the browsegroups.action endpoint. The affected versions are before version 4.22.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<4.22.2+ 2 more
- (no CPE)range: <4.22.2
- (no CPE)range: unspecified
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- jira.atlassian.com/browse/JSDSERVER-11900mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.