cbcvebase.

Atlassian Jira Software vulnerabilities

23 known vulnerabilities affecting atlassian/jira_software.

Total CVEs
23
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH18MEDIUM5

Vulnerabilities

Page 1 of 2
CVE-2022-42890HIGHCVSS 7.52024-03-19
CVE-2022-42890 [HIGH] CVE-2022-42890: RCE (Remote Code Execution) org.apache.xmlgraphics:batik-script Dependency in Jira Software Data Center and Server CVE-2022-42890: RCE (Remote Code Execution) org.apache.xmlgraphics:batik-script Dependency in Jira Software Data Center and Server RCE (Remote Code Execution) org.apache.xmlgraphics:batik-script Dependency in Jira Software Data Center and Server CVE: CVE-2022-42890 Affected products: Jira Software
atlassian
CVE-2022-3509HIGHCVSS 7.52024-03-19
CVE-2022-3509 [HIGH] CVE-2022-3509: DoS (Denial of Service) com.google.protobuf:protobuf-java Dependency in Jira Software Data Center and Server CVE-2022-3509: DoS (Denial of Service) com.google.protobuf:protobuf-java Dependency in Jira Software Data Center and Server DoS (Denial of Service) com.google.protobuf:protobuf-java Dependency in Jira Software Data Center and Server CVE: CVE-2022-3509 Affected products: Jira Software
atlassian
CVE-2022-34169HIGHCVSS 7.52024-03-19
CVE-2022-34169 [HIGH] CVE-2022-34169: RCE (Remote Code Execution) xalan:xalan Dependency in Jira Software Data Center and Server CVE-2022-34169: RCE (Remote Code Execution) xalan:xalan Dependency in Jira Software Data Center and Server RCE (Remote Code Execution) xalan:xalan Dependency in Jira Software Data Center and Server CVE: CVE-2022-34169 Affected products: Jira Software
atlassian
CVE-2022-41704HIGHCVSS 7.52024-03-19
CVE-2022-41704 [HIGH] CVE-2022-41704: RCE (Remote Code Execution) org.apache.xmlgraphics:batik-bridge Dependency in Jira Software Data Center and Server CVE-2022-41704: RCE (Remote Code Execution) org.apache.xmlgraphics:batik-bridge Dependency in Jira Software Data Center and Server RCE (Remote Code Execution) org.apache.xmlgraphics:batik-bridge Dependency in Jira Software Data Center and Server CVE: CVE-2022-41704 Affected products: Jira Software
atlassian
CVE-2022-45688HIGHCVSS 7.52024-03-19
CVE-2022-45688 [HIGH] CVE-2022-45688: DoS (Denial of Service) org.json:json Dependency in Jira Software Data Center and Server CVE-2022-45688: DoS (Denial of Service) org.json:json Dependency in Jira Software Data Center and Server DoS (Denial of Service) org.json:json Dependency in Jira Software Data Center and Server CVE: CVE-2022-45688 Affected products: Jira Software
atlassian
CVE-2022-40146HIGHCVSS 7.52024-03-19
CVE-2022-40146 [HIGH] CVE-2022-40146: SSRF (Server-Side Request Forgery) org.apache.xmlgraphics:batik-bridge Dependency in Jira Software Data Center and Serve CVE-2022-40146: SSRF (Server-Side Request Forgery) org.apache.xmlgraphics:batik-bridge Dependency in Jira Software Data Center and Serve SSRF (Server-Side Request Forgery) org.apache.xmlgraphics:batik-bridge Dependency in Jira Software Data Center and Server CVE: CVE-2022-40146 Affected products: Jira Software
atlassian
CVE-2022-45685HIGHCVSS 7.52024-03-19
CVE-2022-45685 [HIGH] CVE-2022-45685: DoS (Denial of Service) org.codehaus.jettison:jettison Dependency in Jira Software Data Center and Server CVE-2022-45685: DoS (Denial of Service) org.codehaus.jettison:jettison Dependency in Jira Software Data Center and Server DoS (Denial of Service) org.codehaus.jettison:jettison Dependency in Jira Software Data Center and Server CVE: CVE-2022-45685 Affected products: Jira Software
atlassian
CVE-2022-40149MEDIUMCVSS 7.52024-03-19
CVE-2022-40149 [MEDIUM] CVE-2022-40149: DoS (Denial of Service) org.codehaus.jettison:jettison Dependency in Jira Software Data Center and Server CVE-2022-40149: DoS (Denial of Service) org.codehaus.jettison:jettison Dependency in Jira Software Data Center and Server DoS (Denial of Service) org.codehaus.jettison:jettison Dependency in Jira Software Data Center and Server CVE: CVE-2022-40149 Affected products: Jira Software
atlassian
CVE-2022-3171MEDIUMCVSS 7.52024-03-19
CVE-2022-3171 [MEDIUM] CVE-2022-3171: DoS (Denial of Service) com.google.protobuf:protobuf-java Dependency in Jira Software Data Center and Server CVE-2022-3171: DoS (Denial of Service) com.google.protobuf:protobuf-java Dependency in Jira Software Data Center and Server DoS (Denial of Service) com.google.protobuf:protobuf-java Dependency in Jira Software Data Center and Server CVE: CVE-2022-3171 Affected products: Jira Software
atlassian
CVE-2022-40150MEDIUMCVSS 9.12024-03-19
CVE-2022-40150 [MEDIUM] CVE-2022-40150: 9.12.0 to 9.12.2 LTS 9.11.0 to 9.11.3 9.10.0 to 9.10.2 9.9.0 to 9.9.2 9.8.0 to 9.8.2 9.7.0 to 9.7.2 9.6.0 9.5.0 to 9.5.1 CVE-2022-40150: 9.12.0 to 9.12.2 LTS 9.11.0 to 9.11.3 9.10.0 to 9.10.2 9.9.0 to 9.9.2 9.8.0 to 9.8.2 9.7.0 to 9.7.2 9.6.0 9.5.0 to 9.5.1 9.12.0 to 9.12.2 LTS 9.11.0 to 9.11.3 9.10.0 to 9.10.2 9.9.0 to 9.9.2 9.8.0 to 9.8.2 9.7.0 to 9.7.2 9.6.0 9.5.0 to 9.5.1 9.4.0 to 9.4.17 LTS 9.3.0 to 9.3.3 9.2.0 to 9.2.1 9.1.0 to 9.1.1 9.0.0 Any earli
atlassian
CVE-2023-1436MEDIUMCVSS 7.52024-03-19
CVE-2023-1436 [MEDIUM] CVE-2023-1436: DoS (Denial of Service) org.codehaus.jettison:jettison Dependency in Jira Software Data Center and Server CVE-2023-1436: DoS (Denial of Service) org.codehaus.jettison:jettison Dependency in Jira Software Data Center and Server DoS (Denial of Service) org.codehaus.jettison:jettison Dependency in Jira Software Data Center and Server CVE: CVE-2023-1436 Affected products: Jira Software
atlassian
CVE-2023-46589HIGHCVSS 9.12024-02-20
CVE-2023-46589 [HIGH] CVE-2023-46589: from 9.12.0 (LTS) to 9.12.1 (LTS) from 9.11.0 to 9.11.3 from 9.10.0 to 9.10.2 from 9.9.0 to 9.9.2 from 9.8.0 to 9.8.2 fr CVE-2023-46589: from 9.12.0 (LTS) to 9.12.1 (LTS) from 9.11.0 to 9.11.3 from 9.10.0 to 9.10.2 from 9.9.0 to 9.9.2 from 9.8.0 to 9.8.2 fr from 9.12.0 (LTS) to 9.12.1 (LTS) from 9.11.0 to 9.11.3 from 9.10.0 to 9.10.2 from 9.9.0 to 9.9.2 from 9.8.0 to 9.8.2 from 9.7.0 to 9.7.2 9.6.0 from 9.5.0 to 9.5.1 from 9.4.0 (LTS) to 9.4.14 (LTS) from 9
atlassian
CVE-2022-42252HIGHCVSS 7.52024-01-16
CVE-2022-42252 [HIGH] CVE-2022-42252: Request Smuggling org.apache.tomcat:tomcat-coyote Dependency in Jira Software Data Center and Server CVE-2022-42252: Request Smuggling org.apache.tomcat:tomcat-coyote Dependency in Jira Software Data Center and Server Request Smuggling org.apache.tomcat:tomcat-coyote Dependency in Jira Software Data Center and Server CVE: CVE-2022-42252 Severity: HIGH Affected products: Jira Software
atlassian
CVE-2020-25649HIGHCVSS 7.52024-01-16
CVE-2020-25649 [HIGH] CVE-2020-25649: XXE (XML External Entity Injection) jackson-databind Dependency in Jira Software Data Center and Server CVE-2020-25649: XXE (XML External Entity Injection) jackson-databind Dependency in Jira Software Data Center and Server XXE (XML External Entity Injection) jackson-databind Dependency in Jira Software Data Center and Server CVE: CVE-2020-25649 Severity: HIGH Affected products: Jira Software
atlassian
CVE-2021-28165HIGHCVSS 7.52023-11-21
CVE-2021-28165 [HIGH] CVE-2021-28165: DoS (Denial of Service) org.eclipse.jetty:jetty-io in Jira Software Data Center and Server CVE-2021-28165: DoS (Denial of Service) org.eclipse.jetty:jetty-io in Jira Software Data Center and Server DoS (Denial of Service) org.eclipse.jetty:jetty-io in Jira Software Data Center and Server CVE: CVE-2021-28165 Severity: HIGH Affected products: Jira Software
atlassian
CVE-2020-36518HIGHCVSS 7.52023-11-21
CVE-2020-36518 [HIGH] CVE-2020-36518: DoS (Denial of Service) com.fasterxml.jackson.core in Jira Software Data Center and Server CVE-2020-36518: DoS (Denial of Service) com.fasterxml.jackson.core in Jira Software Data Center and Server DoS (Denial of Service) com.fasterxml.jackson.core in Jira Software Data Center and Server CVE: CVE-2020-36518 Severity: HIGH Affected products: Jira Software
atlassian
CVE-2022-42003HIGHCVSS 7.52023-11-21
CVE-2022-42003 [HIGH] CVE-2022-42003: DoS (Denial of Service) com.fasterxml.jackson.core:jackson-databind in Jira Software Data Center and Server CVE-2022-42003: DoS (Denial of Service) com.fasterxml.jackson.core:jackson-databind in Jira Software Data Center and Server DoS (Denial of Service) com.fasterxml.jackson.core:jackson-databind in Jira Software Data Center and Server CVE: CVE-2022-42003 Severity: HIGH Affected products: Jira Software
atlassian
CVE-2021-46877HIGHCVSS 7.52023-11-21
CVE-2021-46877 [HIGH] CVE-2021-46877: DoS (Denial of Service) jackson-databind in Jira Software Data Center and Server CVE-2021-46877: DoS (Denial of Service) jackson-databind in Jira Software Data Center and Server DoS (Denial of Service) jackson-databind in Jira Software Data Center and Server CVE: CVE-2021-46877 Severity: HIGH Affected products: Jira Software
atlassian
CVE-2017-7656HIGHCVSS 7.52023-11-21
CVE-2017-7656 [HIGH] CVE-2017-7656: Cache Poisoning org.eclipse.jetty:jetty-server in Jira Software Data Center and Server CVE-2017-7656: Cache Poisoning org.eclipse.jetty:jetty-server in Jira Software Data Center and Server Cache Poisoning org.eclipse.jetty:jetty-server in Jira Software Data Center and Server CVE: CVE-2017-7656 Severity: HIGH Affected products: Jira Software
atlassian
CVE-2021-37714HIGHCVSS 7.52023-11-21
CVE-2021-37714 [HIGH] CVE-2021-37714: DoS (Denial of Service) org.jsoup:jsoup in Jira Software Data Center and Server CVE-2021-37714: DoS (Denial of Service) org.jsoup:jsoup in Jira Software Data Center and Server DoS (Denial of Service) org.jsoup:jsoup in Jira Software Data Center and Server CVE: CVE-2021-37714 Severity: HIGH Affected products: Jira Software
atlassian
1 / 2Next →