CVE-2019-20418

MEDIUM

Atlassian Jira < 8.8.0 - Application Denial of Service via Wiki Rendering Endpoint

Title source: llm
STIX 2.1

Description

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to prevent users from accessing the instance via an Application Denial of Service vulnerability in the /rendering/wiki endpoint. The affected versions are before version 8.8.0.

References (1)

Core 1
Core References
Issue Tracking, Vendor Advisory x_refsource_misc
https://jira.atlassian.com/browse/JRASERVER-70943

Scores

CVSS v3 6.5
EPSS 0.0042
EPSS Percentile 62.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published
Products (2)
atlassian/jira < 8.8.0
atlassian/jira_software_data_center < 8.8.0
Published Jul 03, 2020
Tracked Since Feb 18, 2026