Atlassian Jira Server Luki w zabezpieczeniach

Wersja

8.0	84
8.1	82
8.2	82
8.3	82
8.4	82

Przeciwdziałanie

Official Fix	118
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	0

Wykorzystywanie

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	118

Wektor dostępu

Not Defined	0
Physical	0
Local	0
Adjacent	2
Network	116

Uwierzytelnianie

Not Defined	0
High	12
Low	52
None	54

Interakcja z użytkownikiem

Not Defined	0
Required	18
None	100

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	12
≤5	46
≤6	34
≤7	14
≤8	10
≤9	2
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	12
≤5	48
≤6	36
≤7	16
≤8	4
≤9	2
≤10	0

VulDB

≤1	0
≤2	0
≤3	4
≤4	14
≤5	40
≤6	36
≤7	8
≤8	16
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	26
≤6	26
≤7	16
≤8	12
≤9	2
≤10	2

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	28
<2k	66
<5k	24
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Wykorzystaj dzisiaj

<1k	118
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (221): 2, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.0.8, 2.0.9, 2.0.11, 2.0.12, 2.0.13, 2.0.14, 4.0, 4.2, 4.13, 4.13.1, 4.13.2, 4.13.3, 4.13.4, 4.13.5, 4.13.6, 4.13.7, 4.13.8, 4.13.9, 4.13.11, 4.13.12, 4.13.13, 4.13.14, 4.13.15, 4.13.16, 4.13.17, 4.13.18, 4.13.19, 4.13.21, 4.20.1, 4.20.2, 4.20.3, 4.20.4, 4.20.5, 4.20.6, 4.20.7, 4.20.8, 4.20.9, 4.22, 4.22.1, 4.22.2, 4.22.3, 5.0, 6.0, 6.1, 6.2, 7, 7.0, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.1, 7.1.1, 7.1.2, 7.1.3, 7.1.4, 7.1.5, 7.1.6, 7.1.7, 7.1.8, 7.2, 7.3, 7.4, 7.5, 7.6, 7.6.1, 7.6.2, 7.6.3, 7.6.4, 7.6.5, 7.6.6, 7.6.7, 7.6.8, 7.6.9, 7.6.11, 7.6.12, 7.6.13, 7.6.14, 7.6.15, 7.6.16, 7.7, 7.7.1, 7.7.2, 7.7.3, 7.7.4, 7.8, 7.8.1, 7.8.2, 7.8.3, 7.8.4, 7.9, 7.9.1, 7.9.2, 7.10, 7.10.1, 7.10.2, 7.11, 7.11.1, 7.12, 7.13, 7.13.1, 7.13.2, 7.13.3, 7.13.4, 7.13.5, 7.13.6, 7.13.7, 7.13.8, 7.13.9, 7.13.11, 7.13.12, 7.13.13, 7.13.14, 7.13.15, 7.13.16, 7.13.17, 8, 8.0, 8.0.1, 8.0.2, 8.1, 8.1.1, 8.1.2, 8.2, 8.2.1, 8.2.2, 8.2.3, 8.2.4, 8.3, 8.3.1, 8.3.2, 8.3.3, 8.4, 8.4.1, 8.5, 8.5.1, 8.5.2, 8.5.3, 8.5.4, 8.5.5, 8.5.6, 8.5.7, 8.5.8, 8.5.9, 8.5.11, 8.5.12, 8.5.13, 8.5.14, 8.5.15, 8.5.16, 8.5.17, 8.5.18, 8.6, 8.6.1, 8.7, 8.7.1, 8.8, 8.8.1, 8.9, 8.9.1, 8.10, 8.10.1, 8.11, 8.12, 8.12.1, 8.12.2, 8.13, 8.13.1, 8.13.2, 8.13.3, 8.13.4, 8.13.5, 8.13.6, 8.13.7, 8.13.8, 8.13.9, 8.13.11, 8.13.12, 8.13.13, 8.13.14, 8.13.15, 8.13.16, 8.13.17, 8.13.18, 8.13.19, 8.13.21, 8.14, 8.15, 8.16, 8.17, 8.18, 8.18.1, 8.19, 8.20, 8.20.1, 8.20.2, 8.20.3, 8.20.4, 8.20.5, 8.20.6, 8.20.7, 8.20.8, 8.20.9, 8.21, 8.22, 8.22.1, 8.22.2, 8.22.3

Link to Product Website: https://www.atlassian.com/

Typ oprogramowania: Bug Tracking Software

Opublikowano	Base	Temp	Słaby punkt	0day	Dzisiaj	Wyk	Prz	CTI	CVE
2022-08-10	4.3	4.1	Atlassian Jira Server/Jira Data Center TeamManagement.jspa cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2022-36801
2022-08-01	4.7	4.5	Atlassian JIRA Server/Data Center Velocity Template privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.01	CVE-2022-36799
2022-06-30	6.4	6.2	Atlassian Jira Server/Jira Data Center Mobile Plugin privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-26135
2022-04-21	7.3	7.0	Atlassian JIRA Server/Data Center Seraph weak authentication	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2022-0540
2022-03-08	4.7	4.5	Atlassian JIRA Server/Data Center Email Template privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2021-43944
2022-02-28	2.4	2.3	Atlassian JIRA Server/Data Center hierarchyConfiguration cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-43945
2022-02-15	4.3	4.1	Atlassian JIRA Server/Data Center Thread Contention/CPU Monitoring Service ViewInstrumentation.jspa cross site request forgery	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-43953
2022-02-15	4.3	4.1	Atlassian JIRA Server/Data Center RestoreDefaults.jspa cross site request forgery	$0-$5k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2021-43952
2022-02-15	4.3	4.1	Atlassian JIRA Server/Data Center Jira-importers-plugin CsvFieldMappingsPage.jspa cross site request forgery	$0-$5k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2021-43941
2022-01-06	4.7	4.5	Atlassian JIRA Server/Data Center Email Template Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-43947
2022-01-05	6.3	6.0	Atlassian JIRA Server/Data Center Filter Subscription EditSubscription.jspa privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2021-43946
2022-01-04	3.5	3.4	Atlassian JIRA Server/Data Center Endpoint custom cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-43942
2021-12-08	7.3	7.0	Atlassian JIRA Server/Data Center Roles Settings roles weak authentication	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-41311
2021-12-08	7.3	7.0	Atlassian JIRA Server/Data Center Service Management Project resource weak authentication	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-41309
2021-11-03	7.4	7.2	Atlassian JIRA Server/Data Center Jira Service Management Project ViewCollectors weak authentication	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-41312
2021-11-02	4.8	4.7	Atlassian JIRA Server/Data Center Associated Project AssociatedProjectsForCustomField.jspa cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-41310
2021-11-01	5.3	5.2	Atlassian JIRA Server/Data Center Email Batch Confirguation ConfigureBatching!default.jspa privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-41313
2021-10-26	4.8	4.7	Atlassian JIRA Server/Data Center Error Message ImporterFinishedPage.jspa cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-41304
2021-10-26	6.4	6.2	Atlassian JIRA Server/Data Center File Replication Setting ReplicationSettings!default.jspa privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-41308
2021-10-26	7.4	7.2	Atlassian JIRA Server/Data Center Private Project privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-41307
2021-10-26	5.9	5.8	Atlassian JIRA Server/Data Center Private Project privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2021-41306
2021-10-26	7.4	7.2	Atlassian JIRA Server/Data Center Project privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2021-41305
2021-10-21	5.8	5.7	Atlassian JIRA Server/Data Center JQL Endpoint privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2021-39127
2021-10-21	6.1	6.1	Atlassian JIRA Server/Data Center Referer cross site request forgery	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2021-39126
2021-09-16	4.7	4.5	Atlassian JIRA Server/Data Center Service Management Addon privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-39128

92 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 92 results.

więcej wpisów autorstwa Atlassian

◂ PoprzedniPrzeglądKolejny ▸

Might our Artificial Intelligence support you?

Check our Alexa App!