Description

It was detected that Jira Projects is accessible anonymously, without authentication.

Remediation

Consider restricting unauthenticated access to projects.

References

Control anonymous user access

Related Vulnerabilities

Xdebug remote code execution via xdebug.remote_connect_back

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0799)

phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1902)

ATutor Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3706)

WordPress 6.2.x Multiple Vulnerabilities (6.2 - 6.2.2)

Severity

Low

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Weak Credentials