The host is installed with Atlassian Jira Server before 7.13.9 or 8.0.0 before 8.4.2 and is prone to a denial of service vulnerability. A flaw is present in the application which fails to properly handle an issue in the UserPickerBrowser.jspa page. Successful exploitation could allow remote attackers to impact the application's availability via a Denial of Service.