CVE-2019-11583

The issue searching component in Jira before version 8.1.0 allows remote attackers to deny access to Jira service via denial of service vulnerability in issue search when ordering by "Epic Name".
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
atlassianCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 65%
VendorProductVersion
atlassianjira
𝑥
< 8.1.0
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/108901
https://jira.atlassian.com/browse/JSWSERVER-20111
http://www.securityfocus.com/bid/108901
https://jira.atlassian.com/browse/JSWSERVER-20111