Forums

Articles
Create
cancel
Showing results for 
Search instead for 
Did you mean: 

Possible email security vulnerability

p.moreno
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
November 16, 2020

We've had a user report a suspicious message that seem to have been abuse of our Cloud Instance.  Is it possible there is a security vulnerability with JIRA Cloud?  They (attacker) were obviously using Burp to surface this issue.

See screen shot.Screenshot 2020-11-14 at 10.09.03.png

1 answer

1 vote
Matt Hart
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
November 17, 2020

Hi @p.moreno

Thank you for your question in here - I'm Matt on the Atlassian Security Team.

If you raise a support request at https://getsupport.atlassian.com we will be able to investigate this further for you.

On the surface however It looks like this is someone testing against this vulnerability which we disclosed on July 10, 2019: https://confluence.atlassian.com/jira/jira-security-advisory-2019-07-10-973486595.html

Please note that Jira Cloud customers are not affected.

Thank you for reaching out, please let me know if there's anything else I can do to help.

 

Cheers,
Matt

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
STANDARD
TAGS
AUG Leaders

Atlassian Community Events