atlassian

468 tracked vulnerabilities.

CVE-2024-21689 HIGH
Bamboo 9.1.0-9.2.16 - Authenticated Remote Code Execution
Aug 20, 2024
CVSS 8.0
EPSS 0.37
CVE-2024-21684 MEDIUM
Bitbucket Data Center 8.0.0-8.9.12 and 8.19.0-8.19.1 - Unauthenticated Open Redirect
Jul 24, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-21687 HIGH
Atlassian Bamboo 9.0.0-9.6.0 - Authenticated Local File Inclusion and Remote Code Execution
Jul 16, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-21686 HIGH
Confluence Data Center and Server < 7.19.22 - Authenticated Stored Cross-Site Scripting
Jul 16, 2024
CVSS 8.7
EPSS 0.03
CVE-2024-21685 MEDIUM
Jira Data Center 9.4.0-9.4.20 - Unauthenticated Exposure of Sensitive Information
Jun 18, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-21683 HIGH NUCLEI
Atlassian Confluence Data Center and Server - Remote Code Execution
May 21, 2024
CVSS 8.8
EPSS 0.94
CVE-2024-21677 HIGH
Confluence Data Center and Server 6.13.0-7.19.19 - Unauthenticated Path Traversal
Mar 19, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-21682 HIGH
Atlassian Assets Discovery 1.0.0-6.2.0 - Authenticated Code Injection
Feb 20, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-21678 HIGH
Confluence Data Center and Server < 7.19.19 - Authenticated Stored Cross-Site Scripting
Feb 20, 2024
CVSS 8.5
EPSS 0.02
CVE-2024-21674 HIGH
Confluence Data Center and Server 7.19.0-7.19.17 - Unauthenticated Remote Code Execution
Jan 16, 2024
CVSS 7.5
EPSS 0.03
CVE-2024-21673 HIGH
Confluence Data Center and Server 7.19.0-7.19.17 - Authenticated Remote Code Execution
Jan 16, 2024
CVSS 8.8
EPSS 0.09
CVE-2024-21672 HIGH
Confluence Data Center and Server 7.19.0-7.19.17 and 8.5.0-8.5.4 - Unauthenticated Remote Code Execution
Jan 16, 2024
CVSS 8.8
EPSS 0.07
CVE-2023-22514 HIGH
Atlassian Sourcetree 3.4.0-3.4.14 and 4.1.0-4.2.4 - Unauthenticated Remote Code Execution
Jan 16, 2024
CVSS 7.8
EPSS 0.01
CVE-2023-22512 HIGH
Confluence Data Center and Server 5.6.0-7.19.13 - Unauthenticated Denial of Service
Jan 16, 2024
CVSS 7.5
EPSS 0.15
CVE-2023-22527 CRITICAL KEVNUCLEI
Atlassian Confluence SSTI Injection
Jan 16, 2024
CVSS 9.8
EPSS 0.94
CVE-2023-22526 HIGH
Confluence Data Center 7.19.0-7.19.16 - Authenticated Remote Code Execution
Jan 16, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-22524 CRITICAL
Atlassian Companion 1.0.0-<2.0.0 - Remote Code Execution via WebSocket Bypass
Dec 06, 2023
CVSS 9.8
EPSS 0.32
CVE-2023-22523 HIGH
Atlassian Assets Discovery Cloud 1.0.0-3.2.0 & Data Center/Server 1.0.0-3.1.11 - Remote Code Execution
Dec 06, 2023
CVSS 8.8
EPSS 0.07
CVE-2023-22522 HIGH
Atlassian Confluence Data Center and Server 4.0-7.19.16 - Authenticated Template Injection and Remote Code Execution
Dec 06, 2023
CVSS 8.8
EPSS 0.16
CVE-2023-22521 HIGH
Atlassian Crowd 3.4.6-5.1.5 - Authenticated Remote Code Execution
Nov 21, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-22516 HIGH
Atlassian Bamboo 8.1.0-9.2.6 - Authenticated Remote Code Execution
Nov 21, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-22518 CRITICAL KEVNUCLEI
Atlassian Confluence Unauth JSON setup-restore Improper Authorization leading to RCE (CVE-2023-22518)
Oct 31, 2023
CVSS 9.8
EPSS 0.94
CVE-2023-22515 CRITICAL KEVNUCLEI
Atlassian Confluence Unauthenticated Remote Code Execution
Oct 04, 2023
CVSS 9.8
EPSS 0.94
CVE-2023-22513 HIGH
Bitbucket Data Center and Server 8.0.0-8.9.4 - Authenticated Remote Code Execution
Sep 19, 2023
CVSS 8.8
EPSS 0.12
CVE-2023-22506 HIGH
Bamboo Data Center 8.0.0-9.2.2 - Authenticated Remote Code Execution
Jul 19, 2023
CVSS 8.8
EPSS 0.04
Products
jira 142 jira_server 135 jira_data_center 79 crucible 52 fisheye 52 confluence_server 49 jira_software_data_center 39 data_center 38 confluence_data_center 36 bamboo 24 crowd 24 bitbucket 20 confluence 19 jira_service_management 16 sourcetree 15 jira_align 13 jira_service_desk 12 application_links 7 Atlassian Fisheye and Crucible 5 hipchat 5 agiloft 4 floodlight 4 Bamboo 3 bitbucket_data_center 3 companion 3 hipchat_server 3 questions_for_confluence 3 universal_plugin_manager 3 Atlassian Crucible 2 Bamboo Data Center 2
Quick Filters
Critical CVEs With Exploits In CISA KEV