Description

The MessageBundleResource resource in Jira Server and Data Center before version 7.13.4, from 8.5.0 before 8.5.5, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to impact the application's availability via an Denial of Service (DoS) vulnerability.

Remediation

References

CVE-2020-14167

Related Vulnerabilities

Drupal Core 8.7.x Cross-Site Scripting (8.7.0 - 8.7.11)

PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-18793)

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Unspecified Vulnerability (2.9.24)

WordPress Plugin WordPress Mega Menu-QuadMenu Remote Code Execution (2.0.6)

Ampache Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3929)

Severity

High

Classification

CVE-2020-14167

Tags

Missing Update Known Vulnerabilities