CVE-2019-8443
CVE-2019-8443
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 2.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
22 may 2019Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The ViewUpgrades resource in Jira before version 7.13.4, from version 8.0.0 before version 8.0.4, and from version 8.1.0 before version 8.1.1 allows remote attackers who have obtained access to administrator's session to access the ViewUpgrades administrative resource without needing to re-authenticate to pass "WebSudo" through an improper access control vulnerability.
Productos afectados
Atlassian · Jira¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →