Vulnerability in Atlassian Jira Service Management Data Center
CVE-2022-36800
Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers without the "Browse Users" permission to view groups via an Information Disclosure vulnerability in the browsegroups.action endpoint. The…
EPSS: 0.002 (41.4th percentile) — read the EPSS interpretation.
Affected products
- Atlassian Jira Service Management Data Center — versions unspecified
- Atlassian Jira Service Management Server — versions unspecified
References
- jira.atlassian.com/browse/JSDSERVER-11900 (x_refsource_MISC)