Detects 'Information Disclosure' vulnerability in Atlassian Jira affects v. before 8.11.1.
Can be used by
Scan only one
CVE-2020-14179 Scanner Detail
Atlassian Jira is a software product that is widely used for project management, issue tracking, and bug tracking. It allows users to plan, track, and manage tasks within their company, and it is an essential tool for software developers and IT professionals. Jira is a customizable platform that allows users to create their workflows, dashboards, and custom fields. This software is often used by companies to manage their projects, track progress, and improve workflow management.
CVE-2020-14179 is an Information Disclosure vulnerability found in Atlassian Jira Server and Data Center versions before 8.5.8, and from version 8.6.0 before 8.11.1. This vulnerability allows remote, unauthenticated attackers to view custom field names and custom Service Level Agreement (SLA) names via an Information Disclosure vulnerability in the /secure/QueryComponent!Default.jspa endpoint. An attacker can exploit this vulnerability to access sensitive information such as custom field names and SLA names without being authenticated, which can put sensitive company information at risk.
When exploited, CVE-2020-14179 can allow an attacker to obtain valuable information that can be used for nefarious purposes. For example, an attacker could use this information to launch further attacks on the company or to sell the information on the black market. This vulnerability can also lead to an unauthorized disclosure of sensitive data, which can have serious consequences for the company. This vulnerability should, therefore, be taken seriously, and precautions must be taken to protect against it.
Securityforeveryone.com is a platform that provides users with access to pro features that help them quickly and easily detect vulnerabilities in their digital assets. With the pro features of this platform, users can scan their web applications and networks for any vulnerabilities that may be present. The platform also provides users with remediation advice and regular security updates to ensure that their assets are always secure. By emphasizing the benefits of this platform, users can be assured that their digital assets are always secure.