Vulnerabilities > Atlassian > Data Center > 8.14.0

DATE CVE VULNERABILITY TITLE RISK
2021-03-22 CVE-2021-26070 Improper Authentication vulnerability in Atlassian Data Center and Jira
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to evade behind-the-firewall protection of app-linked resources via a Broken Authentication vulnerability in the `makeRequest` gadget resource.
network
low complexity
atlassian CWE-287
7.2
7.2
2021-02-15 CVE-2020-29451 Unspecified vulnerability in Atlassian Jira
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate Jira projects via an Information Disclosure vulnerability in the Jira Projects plugin report page.
network
low complexity
atlassian
4.3
4.3
2021-02-15 CVE-2020-36237 Unspecified vulnerability in Atlassian Jira
Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to view custom field options via an Information Disclosure vulnerability in the /rest/api/2/customFieldOption/ endpoint.
network
low complexity
atlassian
5.3
5.3