CVE-2021-43948
Description
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view the names of private objects via an Improper Authorization vulnerability in the Move objects feature. The affected versions are before version 4.21.0.
Risk Information
Base Score
4.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.37
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerability CVE-2021-43943,CVE-2021-43948,CVE-2021-43950 are affected in Atlassian Jira 4.11.0 | Windows |
| Vulnerabilities CVE-2021-43943,CVE-2021-43948,CVE-2021-43950 are affected in Atlassian Jira Service Management Data Center 4.20.99 | Windows |
| Vulnerabilities CVE-2021-43943,CVE-2021-43948,CVE-2021-43950 are affected in Atlassian Jira Service Management Server 4.20.99 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234