Atlassians Jira software contains multiple vulnerabilities that could allow an attacker to carry out a variety of actions, including the disclosure of sensitive information and the remote execution of JavaScript code. Cisco Talos worked with Atlassian to ensure that these issues are resolved and that an update is available for affected customers. Ben Taylor of Cisco ASIG discovered these vulnerabilities in Atlassian Jira. The vulnerabilities are affected by versions 7.6.4 through 8.1.0 of Atlassian’s software.”]
Source: https://blog.talosintelligence.com/2019/09/vuln-spotlight-atlassian-jira-sept-19.html