{"vulnerability": "CVE-2020-29453", "sightings": [{"uuid": "ecdc720e-5cb4-487c-badb-1c1abd206a01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-29453", "type": "seen", "source": "https://t.me/cKure/6756", "content": "\u25a0\u25a0\u25a0\u25a1\u25a1 Pre-Authorization Limited Arbitrary File Read in Jira Server - CVE-2020-29453.\n\nhttps://jira.atlassian.com/browse/JRASERVER-72014", "creation_timestamp": "2021-08-24T16:41:19.000000Z"}, {"uuid": "0a1dfab7-0583-4b51-8268-5ce7c14dbbeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-29453", "type": "seen", "source": "https://t.me/cibsecurity/23953", "content": "\u203c CVE-2020-29453 \u203c\n\nThe CachingResourceDownloadRewriteRule class in Jira Server and Jira Data Center before version 8.5.11, from 8.6.0 before 8.13.3, and from 8.14.0 before 8.15.0 allowed unauthenticated remote attackers to read arbitrary files within WEB-INF and META-INF directories via an incorrect path access check.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-23T00:33:55.000000Z"}]}