Home

CVE-2021-43950

Description

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view import source configuration information via a Broken Access Control vulnerability in the Insight Import Source feature. The affected versions are before version 4.21.0.

Risk Information

Base Score
4.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.37

Associated Vulnerability

VulnerabilityOS Platform
Vulnerability CVE-2021-43943,CVE-2021-43948,CVE-2021-43950 are affected in Atlassian Jira 4.11.0Windows
Vulnerabilities CVE-2021-43943,CVE-2021-43948,CVE-2021-43950 are affected in Atlassian Jira Service Management Data Center 4.20.99Windows
Vulnerabilities CVE-2021-43943,CVE-2021-43948,CVE-2021-43950 are affected in Atlassian Jira Service Management Server 4.20.99Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234