Cross-site request forgery (CSRF) vulnerability in Atlassian Jira Server - CVE-2019-20405 (linux)ID: oval:org.secpod.oval:def:90955 | Date: (C)2023-07-14 (M)2023-07-14 |
Class: VULNERABILITY | Family: unix |
The host is installed with Atlassian Jira Server 7.13.0 before 8.6.0 and is prone to a cross-site request forgery vulnerability. A flaw is present in the application which fails to properly handle issues in the JMX monitoring flag. Successful exploitation allows remote attackers to turn the JMX monitoring flag off or on.
Product: |
Atlassian Jira Server |