vulnerability
Atlassian JIRA: Cross-Site Request Forgery (CSRF) (CVE-2019-11588)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Aug 23, 2019 | Aug 30, 2019 | Aug 11, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Aug 23, 2019
Added
Aug 30, 2019
Modified
Aug 11, 2025
Description
The ViewSystemInfo class doGarbageCollection method in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to trigger garbage collection via a Cross-site request forgery (CSRF) vulnerability.
Solutions
atlassian-jira-upgrade-7_13_6atlassian-jira-upgrade-8_2_3atlassian-jira-upgrade-8_3_2
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.