CVE-2020-14193
N/A
N/A
Summary
Affected versions of Automation for Jira - Server allowed remote attackers to read and render files as mustache templates in files inside the WEB-INF/classes & <jira-installation>/jira/bin directories via a template injection vulnerability in Jira smart values using mustache partials. The affected versions are those before version 7.1.15.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Atlassian | Automation for Jira | unspecified < 7.1.15 | affected |
Weaknesses
- Template Injection
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.