CVE-2019-20899

Publication date

2020-07-13 01:00:16

Family

atlassian

State

PUBLISHED

Description

The Gadget API in Atlassian Jira Server and Data Center in affected versions allows remote attackers to make Jira unresponsive via repeated requests to a certain endpoint in the Gadget API. The affected versions are before version 8.5.4, and from version 8.6.0 before 8.6.1.