← back
CVE-2021-43948

CVE-2021-43948

EPSS 0.8%
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view the names of private objects via an Improper Authorization vulnerability in the "Move objects" feature. The affected versions are before version 4.21.0.
Affected products
Atlassian · Jira Service Management Data CenterAtlassian · Jira Service Management Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jira.atlassian.com/browse/JSDSERVER-10981