Auth bypass in Atlassian Jira Data Center

CVE-2021-41309

Affected versions of Atlassian Jira Server and Data Center allow a user who has had their Jira Service Management access revoked to export audit logs of another user's Jira Service Management project via a Broken Authentication vulnerabili…

Vulnerability class: Broken Authentication

EPSS: 0.002 (40.0th percentile) — read the EPSS interpretation.