CVE-2020-14168
01.07.2020, 02:15
The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to access outgoing emails between a Jira instance and the SMTP server via man-in-the-middle (MITM) vulnerability.Enginsight
| Vendor | Product | Version |
|---|---|---|
| atlassian | jira | 𝑥 < 7.13.14 |
| atlassian | jira_data_center | 8.5.0 ≤ 𝑥 < 8.5.5 |
| atlassian | jira_data_center | 8.8.0 ≤ 𝑥 < 8.8.2 |
| atlassian | jira_data_center | 8.9.0 ≤ 𝑥 < 8.9.1 |
| atlassian | jira_server | 8.5.0 ≤ 𝑥 < 8.5.5 |
| atlassian | jira_server | 8.8.0 ≤ 𝑥 < 8.8.2 |
| atlassian | jira_server | 8.9.0 ≤ 𝑥 < 8.9.1 |
| atlassian | jira_software_data_center | 𝑥 < 7.13.14 |
𝑥
= Vulnerable software versions