CVE-2019-20413

High

7.5/10

Summary

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability on the UserPickerBrowser.jspa page. The affected versions are before version 7.13.9, and from version 8.0.0 before 8.4.2.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: HIGH

References

Advisory Timeline

Published Jun 29, 2020

CVE-2019-20413

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS