Atlassian Jira Server 8.6.0
Approved changes feed: RSS · Atom
cpe:2.3:a:atlassian:jira_server:8.6.0:*:*:*:*:*:*:*
part: a version: 8.6.0 update: *
| Vendor | Atlassian (8acde0d4-2b83-5bd8-8d3f-60d59e0b022e) |
|---|---|
| Product | Jira Server (3f8dddf0-7f60-57ce-b88c-81ba1f4ea86e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-20901 |
vulnerable | 2026-06-03 14:40:17.797597 |
Details available
The login.jsp resource in Jira before version 8.5.2, and from version 8.6.0 before version 8.6.1 allows remote attackers to redirect users to a different website which they may use as part of performing a phishing attack via an open redirect in the os_destination parameter.
Published: 2020-07-13T04:55:11.862Z
Updated: 2024-09-17T01:41:06.651Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-20106 |
vulnerable | 2026-06-03 14:40:11.492292 |
Details available
Comment properties in Atlassian Jira Server and Data Center before version 7.13.12, from 8.0.0 before version 8.5.4, and 8.6.0 before version 8.6.1 allows remote attackers to make comments on a ticket to which they do not have commenting permissions via a broken access control bug.
Published: 2020-02-06T03:10:25.647Z
Updated: 2024-09-17T02:12:10.048Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.