← volver
CVE-2021-39124

CVE-2021-39124

EPSS 0.5%
The Cross-Site Request Forgery (CSRF) failure retry feature of Atlassian Jira Server and Data Center before version 8.16.0 allows remote attackers who are able to trick a user into retrying a request to bypass CSRF protection and replay a crafted request.
Productos afectados
Atlassian · Jira Data CenterAtlassian · Jira Server

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://jira.atlassian.com/browse/JRASERVER-72761