CVE-2019-8445

CVE-2019-8445

Vendor Atlassian
Product Jira
Weakness CWE-863 · Incorrect authorization
Published August 23, 2019
Last update September 17, 2024

CVSS base score

What the vulnerability does

01Description

Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.2 allow remote attackers to view worklog time information via a missing permissions check.

Key dates

02Disclosure timeline

August 23, 2019 CVE published
September 17, 2024 Record updated