Atlassian Schwachstellen

Zeitverlauf

Typ

Produkt

Atlassian Data Center127
Atlassian JIRA Server114
Atlassian Crucible45
Atlassian JIRA40
Atlassian FishEye39

Massnahmen

Official Fix326
Temporary Fix0
Workaround0
Unavailable0
Not Defined26

Ausnutzbarkeit

High11
Functional0
Proof-of-Concept7
Unproven0
Not Defined334

Zugriffsart

Not Defined0
Physical0
Local7
Adjacent13
Network332

Authentisierung

Not Defined0
High29
Low156
None167

Benutzeraktivität

Not Defined0
Required81
None271

C3BM Index

CVSSv3 Base

≤10
≤20
≤31
≤430
≤594
≤6106
≤749
≤843
≤920
≤109

CVSSv3 Temp

≤10
≤20
≤31
≤433
≤5106
≤6106
≤746
≤833
≤919
≤108

VulDB

≤10
≤20
≤313
≤440
≤5105
≤684
≤751
≤849
≤92
≤108

NVD

≤10
≤20
≤30
≤42
≤544
≤662
≤758
≤831
≤931
≤1025

CNA

≤10
≤20
≤30
≤40
≤51
≤61
≤70
≤86
≤99
≤106

Hersteller

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k92
<2k169
<5k87
<10k0
<25k0
<50k1
<100k3
≥100k0

Exploit heute

<1k347
<2k2
<5k0
<10k0
<25k3
<50k0
<100k0
≥100k0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (60): Activity Streams (1), Application Links (4), Assets Discovery Cloud (1), Assets Discovery Data Center (2), Atlasboard (1), Atlaskit (1), Bamboo (15), Bamboo Data Center (2), Bamboo Server (1), Bitbucket (3), Bitbucket Data Center (3), Bitbucket Server (11), Bitbucket Server and Data Center (2), Companion App (3), Confluence (13), Confluence Data Center (15), Confluence Questions (2), Confluence Server (35), Connect Express (1), Connect Spring Boot (2), Crowd (8), Crowd Data Center (2), Crowd Server (1), Crucible (45), Data Center (127), Doxygen for Atlassian Confluence (3), Eucalyptus (1), FishEye (39), Fisheye (5), Floodlight Controller (2), HipChat (1), Hipchat Server (1), JIRA (40), JIRA Core (1), JIRA Server (114), JIRA Server for Slack Plugin (1), JIRA Software (1), Jira (6), Jira Align (2), Jira Core Data Center (1), Jira Data Center (4), Jira Server (2), Jira Service Desk Data Center (3), Jira Service Desk Server (5), Jira Service Management (2), Jira Service Management Data Center (1), Jira Service Management Server (8), Jira Service Management Server and Data Center (1), Jira Software Data Center (1), Micrium uC LIB (1), Micrium uC OS (1), Navigator Links (1), OAuth Plugin (1), SourceTree (5), Universal Plugin Manager (3), User Management for Bitbucket (1), User Management for Confluence (1), atlassian-gadgets (1), gajira-comment (1), gajira-create (1)

Link to Vendor Website: https://www.atlassian.com/

VeröffentlichtBaseTempSchwachstelleProdAusMasEPSSCTICVE
16.04.20248.88.6Atlassian Confluence Data Center System Call erweiterte RechteUnbekanntNot DefinedOfficial Fix0.000430.05CVE-2024-21676
19.03.20247.97.7Atlassian Confluence Data Center Directory TraversalUnbekanntNot DefinedOfficial Fix0.000430.06CVE-2024-21677
20.02.20246.05.9Atlassian Confluence Data Center Cross Site ScriptingUnbekanntNot DefinedOfficial Fix0.000430.05CVE-2024-21678
20.02.20247.27.0Atlassian Assets Discovery Data Center schwache AuthentisierungUnbekanntNot DefinedOfficial Fix0.000450.04CVE-2024-21682
16.01.20249.99.7Atlassian Confluence Data Center/Confluence Server Template erweiterte RechteUnbekanntHighOfficial Fix0.965680.05CVE-2023-22527
16.01.20248.28.1Atlassian Confluence Data Center/Confluence Server erweiterte RechteUnbekanntNot DefinedOfficial Fix0.001730.02CVE-2024-21672
16.01.20247.17.1Atlassian Confluence Data Center/Confluence Server Information DisclosureUnbekanntNot DefinedOfficial Fix0.001650.03CVE-2024-21674
16.01.20247.77.6Atlassian Confluence Data Center erweiterte RechteUnbekanntNot DefinedOfficial Fix0.001510.02CVE-2023-22526
16.01.20247.87.7Atlassian Confluence Data Center/Confluence Server Environment erweiterte RechteUnbekanntNot DefinedOfficial Fix0.001290.00CVE-2024-21673
06.12.20239.49.3Atlassian Companion App Websocket Remote Code ExecutionUnbekanntNot DefinedOfficial Fix0.002120.02CVE-2023-22524
06.12.20239.59.3Atlassian Assets Discovery Cloud Assets Discovery Agent Remote Code ExecutionCloud SoftwareNot DefinedOfficial Fix0.001040.03CVE-2023-22523
06.12.20238.48.3Atlassian Confluence Data Center/Confluence Server Template erweiterte RechteUnbekanntNot DefinedOfficial Fix0.001090.03CVE-2023-22522
21.11.20237.87.7Atlassian Crowd Data Center/Crowd Server Privilege EscalationUnbekanntNot DefinedOfficial Fix0.000970.02CVE-2023-22521
21.11.20238.38.2Atlassian Bamboo Data Center/Bamboo Server Privilege EscalationUnbekanntNot DefinedOfficial Fix0.000970.02CVE-2023-22516
31.10.20238.78.7Atlassian Confluence Data Center/Confluence Server erweiterte RechteUnbekanntNot DefinedNot Defined0.966340.00CVE-2023-22518
04.10.20239.99.7Atlassian Confluence Server/Confluence Data Center Remote Code ExecutionUnbekanntNot DefinedOfficial Fix0.971960.03CVE-2023-22515
19.09.20238.38.2Atlassian Bitbucket Data Center/Bitbucket Server Privilege EscalationUnbekanntNot DefinedOfficial Fix0.000970.05CVE-2023-22513
19.07.20237.97.8Atlassian Bamboo Data Center System Call erweiterte RechteUnbekanntNot DefinedOfficial Fix0.001130.01CVE-2023-22506
19.07.20238.38.2Atlassian Confluence Server/Data Center Privilege EscalationUnbekanntNot DefinedOfficial Fix0.000900.05CVE-2023-22508
19.07.20237.87.7Atlassian Confluence Server/Data Center Privilege EscalationUnbekanntNot DefinedOfficial Fix0.000900.02CVE-2023-22505
26.06.20234.44.4Atlassian Jira TechTime User Management Cross Site ScriptingBug Tracking SoftwareNot DefinedNot Defined0.000450.03CVE-2023-36662
25.05.20235.75.6Atlassian Confluence Server erweiterte RechteUnbekanntNot DefinedOfficial Fix0.000560.04CVE-2023-22504
02.05.20235.35.2Atlassian Confluence Server/Data Center Attachment Information DisclosureUnbekanntNot DefinedOfficial Fix0.000710.03CVE-2023-22503
01.02.20238.38.3Atlassian Jira Service Management Server and Data Center schwache AuthentisierungBug Tracking SoftwareNot DefinedNot Defined0.002120.03CVE-2023-22501
17.11.20228.58.4Atlassian Crowd REST API schwache AuthentisierungUnbekanntNot DefinedOfficial Fix0.001570.02CVE-2022-43782

327 weitere Einträge werden nicht mehr angezeigt

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!