CVE-2019-20410

Summary

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to view sensitive information via an Information Disclosure vulnerability in the comment restriction feature. The affected versions are before version 7.6.17, from version 7.7.0 before 7.13.9, and from version 8.0.0 before 8.4.2.

Affected Software

VendorProductVersion RangeStatus
AtlassianJira Serverunspecified < 7.6.17affected
AtlassianJira Server7.7.0 < unspecifiedaffected
AtlassianJira Serverunspecified < 7.13.9affected
AtlassianJira Server8.0.0 < unspecifiedaffected
AtlassianJira Serverunspecified < 8.4.2affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References