Unauthenticated Access to Sensitive Information in Atlassian Jira Server and Data Center

Unauthenticated Access to Sensitive Information in Atlassian Jira Server and Data Center

CVE-2019-20898 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to access sensitive information without being authenticated in the Global permissions screen. The affected versions are before version 8.8.0.

Learn more about our Cis Benchmark Audit For Server Software.