Jira Vulnérabilités

Chronologie

L'année dernière

Version

8.097
8.195
8.290
8.389
8.484

Contre-mesures

Official Fix203
Temporary Fix0
Workaround0
Unavailable0
Not Defined31

Exploitabilité

High4
Functional0
Proof-of-Concept4
Unproven0
Not Defined226

Vecteur d'accès

Not Defined0
Physical0
Local5
Adjacent9
Network220

Authentification

Not Defined0
High14
Low101
None119

Interaction de l'utilisateur

Not Defined0
Required54
None180

C3BM Index

L'année dernière

CVSSv3 Base

≤10
≤20
≤31
≤425
≤572
≤676
≤732
≤820
≤96
≤102

CVSSv3 Temp

≤10
≤20
≤31
≤427
≤577
≤676
≤736
≤89
≤96
≤102

VulDB

≤10
≤20
≤38
≤433
≤571
≤672
≤721
≤827
≤90
≤102

NVD

≤10
≤20
≤30
≤43
≤532
≤644
≤742
≤819
≤915
≤106

CNA

≤10
≤20
≤30
≤40
≤52
≤60
≤70
≤80
≤90
≤102

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤101

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k65
<2k122
<5k45
<10k1
<25k1
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k232
<2k1
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

L'année dernière

🔴 CTI Activités

Affected Versions (414): 0.1, 0.2, 0.3, 0.4, 0.5, 0.6, 0.7, 0.8, 1.0, 1.1, 1.1.1, 1.1.2, 1.1.3, 1.1.4, 1.1.5, 1.1.6, 1.1.7, 1.1.8, 1.1.9, 1.1.11, 1.1.12, 1.1.13, 1.1.14, 1.1.15, 1.1.16, 1.1.17, 1.1.18, 1.1.19, 1.2, 1.3, 1.3.1, 1.4, 1.5, 1.6, 1.7, 1.8, 1.9, 1.10, 1.11, 1.12, 2, 2.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.0.8, 2.0.9, 2.0.11, 2.0.12, 2.0.13, 2.0.14, 2.0.165.v8846cf59f3db, 2.1, 2.2, 2.3, 2.4, 2.4.6, 2.5, 2.6, 3, 3.0, 3.0.1, 3.1, 3.1.1, 3.2, 3.3, 3.4, 3.4.3, 3.5, 3.6, 3.6.2 156, 3.7, 3.8, 3.9, 3.9.1, 3.9.2, 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 3.9.8, 3.9.9, 3.9.11, 3.9.12, 3.9.13, 3.9.14, 3.9.15, 3.9.16, 3.10, 3.10.1, 3.10.2, 3.10.3, 3.10.4, 3.10.5, 3.10.6, 3.10.7, 3.10.8, 3.10.9, 3.11, 3.12, 3.12.1, 3.12.2, 3.12.3, 3.13, 3.13.1, 3.13.2, 3.13.3, 3.13.4, 3.13.5, 3.16, 3.16.1, 3.16.2, 3.16.3, 3.16.4, 3.16.5, 3.16.6, 3.16.7, 3.16.8, 4.0, 4.0.1, 4.0.2, 4.1, 4.1.1, 4.1.2, 4.2, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.2.5, 4.3, 4.3.1, 4.3.2, 4.3.3, 4.3.4, 4.4, 4.4.1, 4.4.2, 4.5, 4.6, 4.7, 4.8, 4.9, 4.10, 4.11, 4.12, 4.13, 4.13.1, 4.13.2, 4.13.3, 4.13.4, 4.13.5, 4.13.6, 4.13.7, 4.13.8, 4.13.9, 4.13.11, 4.13.12, 4.13.13, 4.13.14, 4.13.15, 4.13.16, 4.13.17, 4.13.18, 4.13.19, 4.13.21, 4.14, 4.15, 4.16, 4.17, 4.18, 4.19, 4.20, 4.20.1, 4.20.2, 4.20.3, 4.20.4, 4.20.5, 4.20.6, 4.20.7, 4.20.8, 4.20.9, 4.22, 4.22.1, 4.22.2, 4.22.3, 5.0, 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.1, 6.2, 6.3, 6.4, 6.5, 6.6, 6.7, 6.8, 6.9, 6.10, 6.11, 6.12, 6.13, 6.14, 6.15, 6.16, 6.17, 6.18, 6.19, 6.20, 6.21, 6.22, 6.23, 6.24, 6.25, 6.26, 6.27, 6.28, 6.29, 7, 7.0, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.1, 7.1.1, 7.1.2, 7.1.3, 7.1.4, 7.1.5, 7.1.6, 7.1.7, 7.1.8, 7.2, 7.2.1, 7.2.2, 7.2.3, 7.2.4, 7.2.5, 7.2.6, 7.2.7, 7.2.8, 7.2.9, 7.2.11, 7.3, 7.4, 7.4.1, 7.5, 7.5.1, 7.5.2, 7.5.3, 7.6, 7.6.1, 7.6.2, 7.6.3, 7.6.4, 7.6.5, 7.6.6, 7.6.7, 7.6.8, 7.6.9, 7.6.11, 7.6.12, 7.6.13, 7.6.14, 7.6.15, 7.6.16, 7.7, 7.7.1, 7.7.2, 7.7.3, 7.7.4, 7.8, 7.8.1, 7.8.2, 7.8.3, 7.8.4, 7.9, 7.9.1, 7.9.2, 7.10, 7.10.1, 7.10.2, 7.11, 7.11.1, 7.11.2, 7.12, 7.12.1, 7.12.2, 7.12.3, 7.13, 7.13.1, 7.13.2, 7.13.3, 7.13.4, 7.13.5, 7.13.6, 7.13.7, 7.13.8, 7.13.9, 7.13.11, 7.13.12, 7.13.13, 7.13.14, 7.13.15, 7.13.16, 7.13.17, 8, 8.0, 8.0.1, 8.0.2, 8.0.3, 8.1, 8.1.1, 8.1.2, 8.2, 8.2.1, 8.2.2, 8.2.3, 8.2.4, 8.3, 8.3.1, 8.3.2, 8.3.3, 8.4, 8.4.1, 8.4.2, 8.5, 8.5.1, 8.5.2, 8.5.3, 8.5.4, 8.5.5, 8.5.6, 8.5.7, 8.5.8, 8.5.9, 8.5.11, 8.5.12, 8.5.13, 8.5.14, 8.5.15, 8.5.16, 8.5.17, 8.5.18, 8.6, 8.6.1, 8.7, 8.7.1, 8.8, 8.8.1, 8.9, 8.9.1, 8.10, 8.10.1, 8.11, 8.12, 8.12.1, 8.12.2, 8.13, 8.13.1, 8.13.2, 8.13.3, 8.13.4, 8.13.5, 8.13.6, 8.13.7, 8.13.8, 8.13.9, 8.13.11, 8.13.12, 8.13.13, 8.13.14, 8.13.15, 8.13.16, 8.13.17, 8.13.18, 8.13.19, 8.13.21, 8.14, 8.15, 8.16, 8.17, 8.18, 8.18.1, 8.19, 8.20, 8.20.1, 8.20.2, 8.20.3, 8.20.4, 8.20.5, 8.20.6, 8.20.7, 8.20.8, 8.20.9, 8.21, 8.22, 8.22.1, 8.22.2, 8.22.3

Link to Product Website: https://www.microsoft.com/

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
13/02/20249.89.1Microsoft Entra Jira Single-Sign-On Plugin Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2024-21401
29/11/20235.05.0Jira Plugin Credentials Lookup elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-49653
07/10/20233.43.3Discourse-jira divulgation de l'information$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-44384
07/07/20233.43.4Apache Camel JIRA Temporary Files divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.01CVE-2023-34442
05/07/20236.06.0icingaweb2-module-jira cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-30607
26/06/20234.44.4Atlassian Jira TechTime User Management cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-36662
01/02/20238.38.3Atlassian Jira Service Management Server and Data Center authentification faible$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-22501
27/01/20236.56.5JIRA Pipeline Steps Plugin cross site request forgery$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-24437
27/01/20234.54.5JIRA Pipeline Steps Plugin Controller File System divulgation de l'information$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-24439
27/01/20235.05.0JIRA Pipeline Steps Plugin Credentials elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-24438
27/01/20234.64.6JIRA Pipeline Steps Plugin Configuration Form chiffrement faible$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-24440
14/10/20225.55.3Atlassian Jira Align MasterUserEdit API elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-36803
14/10/20226.16.0Atlassian Jira Align ManageJiraConnectors API elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-36802
10/08/20224.34.1Atlassian Jira Server/Jira Data Center TeamManagement.jspa cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2022-36801
03/08/20224.34.1Atlassian Jira Service Management Server/Data Center Group browsegroups.action divulgation de l'information$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-36800
01/08/20224.74.5Atlassian JIRA Server/Data Center Velocity Template elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.01CVE-2022-36799
26/07/20226.05.9Atlassian Jira Service Management Server/Data Center JSM Insight elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2021-43959
21/07/20227.57.4Atlassian Jira Servlet Filter vulnérabilité inconnue$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2022-26136
21/07/20228.07.9Atlassian Jira HTTP Request Remote Code Execution$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-26137
07/07/20224.44.4Appfire Jira Misc Custom Fields App Project Name cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-32567
30/06/20226.46.2Atlassian Jira Server/Jira Data Center Mobile Plugin elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2022-26135
21/04/20227.37.0Atlassian JIRA Server/Data Center Seraph authentification faible$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2022-0540
13/04/20223.53.5Jira Plugin cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-29041
08/03/20224.74.5Atlassian JIRA Server/Data Center Email Template elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2021-43944
28/02/20222.42.3Atlassian JIRA Server/Data Center hierarchyConfiguration cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-43945

209 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 209 results.

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!