Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2021/07/06 12:0 a.m.25 views

Atlassian Jira 8.14.x < 8.15.1 Multiple Vulnerabilities (1/2)

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.12, 8.6.x 8.13.4 or 8.14.x 8.15.1. It is, therefore, affected by multiple vulnerabilities: - A DOM based Cross-Site Scripting XSS vulnerability caused by parameter...

6.1CVSS5.1AI score0.0161EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/07/02 12:0 a.m.28 views

Atlassian Jira < 8.5.12 Multiple Vulnerabilities

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.12, 8.6.x 8.13.4 or 8.14.x 8.15.1. It is, therefore, affected by multiple vulnerabilities: - A DOM based Cross-Site Scripting XSS vulnerability caused by parameter...

6.1CVSS5.1AI score0.0161EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/07/02 12:0 a.m.31 views

Atlassian Jira 8.6.x < 8.13.4 Multiple Vulnerabilities

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.12, 8.6.x 8.13.4 or 8.14.x 8.15.1. It is, therefore, affected by multiple vulnerabilities: - A DOM based Cross-Site Scripting XSS vulnerability caused by parameter...

6.1CVSS5.1AI score0.0161EPSS
Exploits0References4
NCSC
NCSC
added 2021/04/16 12:0 a.m.19 views

Vulnerabilities fixed in Atlassian Jira

Atlassian has fixed several vulnerabilities in Jira. A unauthenticated remote malicious person can exploit the vulnerabilities exploit them to gain access to information about the system or to perform a Cross-Site Scripting XSS attack. The latter can lead to the execution of arbitrary script code...

6.1CVSS6.8AI score0.0161EPSS
Exploits0
CVE
CVE
added 2021/04/14 11:45 p.m.103 views

CVE-2021-26075

CVE-2021-26075 affects Atlassian Jira Server/Data Center: the AttachTemporaryFile REST resource allows remote authenticated attackers to disclose the full path of the Jira application data directory via an error message when an invalid filename is provided. Affected versions are before 8.5.12, fr...

4.3CVSS4.3AI score0.0161EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2021/04/14 11:45 p.m.21 views

CVE-2021-26075

The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 before 8.15.1 allowed remote authenticated attackers to obtain the full path of the Jira application data directory via an...

5.2AI score0.0161EPSS
Exploits0References1
Rows per page
Query Builder