The SetFeatureEnabled.jspa resource in Jira Server and Data Center before version 8.5.13, from version 8.6.0 before version 8.13.5, and from version 8.14.0 before version 8.15.1 allows remote anonymous attackers to enable and disable Jira Software configuration via a cross-site request forgery (CSRF) vulnerability.

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.13, 8.6.x < 8.13.5 or 8.14.x < 8.15.1. It is, therefore, affected by multiple vulnerabilities:

 - An information disclosure vulnerability allowing remote anonymous attackers to determine if a group exists and if they are assigned to a publicly visible issue field. (CVE-2020-36286)

 - An information disclosure vulnerability allowing remote anonymous attackers to determine if a username is valid or not via a missing permissions check. (CVE-2020-36238)

 - A Cross-Site Request Forgery (CSRF) vulnerability allowing remote anonymous attackers to enable and disable Jira Software configuration. (CVE-2021-26071)

Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is affected by multiple vulnerabilities. 

  - The /rest/api/1.0/render resource in Jira Server and Data Center before version 8.5.13, from version     8.6.0 before version 8.13.5, and from version 8.14.0 before version 8.15.1 allows remote anonymous     attackers to determine if a username is valid or not via a missing permissions check. (CVE-2020-36238)

  - The membersOf JQL search function in Jira Server and Data Center before version 8.5.13, from version     8.6.0 before version 8.13.5, and from version 8.14.0 before version 8.15.1 allows remote anonymous     attackers to determine if a group exists & members of groups if they are assigned to publicly visible     issue field. (CVE-2020-36286)   
  - The SetFeatureEnabled.jspa resource in Jira Server and Data Center before version 8.5.13, from version     8.6.0 before version 8.13.5, and from version 8.14.0 before version 8.15.1 allows remote anonymous     attackers to enable and disable Jira Software configuration via a cross-site request forgery (CSRF)     vulnerability. (CVE-2021-26071)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version

ID	Name	Product	Family	Severity
112821	Atlassian Jira 8.14.x < 8.15.1 Multiple Vulnerabilities (2/2)	Web App Scanning	Component Vulnerability	medium
112820	Atlassian Jira 8.6.x < 8.13.5 Multiple Vulnerabilities	Web App Scanning	Component Vulnerability	medium
112819	Atlassian Jira < 8.5.13 Multiple Vulnerabilities	Web App Scanning	Component Vulnerability	medium
148391	Atlassian JIRA < 8.5.13 / 8.6.x < 8.13.5 / 8.14.x < 8.15.1 Multiple Vulnerablities	Nessus	CGI abuses	medium

Detections

Analytics

CVE-2021-26071

low

Tenable Plugins

medium

medium

medium

medium