vulnerability

Atlassian JIRA: Unspecified Security Vulnerability (CVE-2019-20418)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:N/A:P)	Jul 3, 2020	Jul 30, 2020	Jul 30, 2020

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:N/A:P)

Published

Jul 3, 2020

Added

Jul 30, 2020

Modified

Jul 30, 2020

Description

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to prevent users from accessing the instance via an Application Denial of Service vulnerability in the /rendering/wiki endpoint. The affected versions are before version 8.8.0.

Solution

atlassian-jira-upgrade-8_8_0

References

CVE-2019-20418
https://attackerkb.com/topics/CVE-2019-20418

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report