The host is installed with Atlassian Jira Server before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 and is prone to an open redirect vulnerability. A flaw is present in the application which fails to properly handle the startup.jsp resource. Successful exploitation could allow attackers to redirect users to a different website which they may use as part of performing a phishing attack.