Description
The ConfigureBambooRelease resource in Jira Software and Jira Software Data Center before version 8.6.1 allows authenticated remote attackers to view release version information in projects that they do not have access to through an missing authorisation check.
Remediation
References
Related Vulnerabilities
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-24554)
WordPress Plugin WP Live Chat Support Pro Unspecified Vulnerability (8.0.07)
Jenkins Incorrect Default Permissions Vulnerability (CVE-2023-43496)
WordPress Plugin Auto Group Join Cross-Site Scripting (1.0)
IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2023-38371)