User Enumeration Vulnerability in Jira ManageFilters.jspa Resource

User Enumeration Vulnerability in Jira ManageFilters.jspa Resource

CVE-2019-3401 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

The ManageFilters.jspa resource in Jira before version 7.13.3 and from version 8.0.0 before version 8.1.1 allows remote attackers to enumerate usernames via an incorrect authorisation check.

Learn more about our User Device Pen Test.