58 matches found
EUVD-2019-6091
Malware in sbrugna...
EUVD-2020-6323
Malware in sbrugna...
EUVD-2020-6337
Malware in sbrugna...
EUVD-2019-6090
Malware in sbrugna...
Atlassian Jira Service Management Data Center and Server 5.4.x < 5.4.25 / 5.12.x < 5.12.12 / 5.15.x < 5.17.1 DoS (JSDSERVER-15504)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-15504 advisory. - Improper Handling of Exceptional Conditions, Uncontrolled Resource Consumption vulnerability in Apac...
Atlassian Jira Service Management Data Center and Server < 5.4.19 / 5.11.x < 5.12.6 (JSDSERVER-15248)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-15248 advisory. - In Connect2id Nimbus JOSE+JWT before 9.37.2, an attacker can cause a denial of service resource...
Atlassian Jira Service Management Assets Discovery < 6.2.1 (JSDSERVER-15067)
The version of the Atlassian Jira Service Management Assets Discovery formerly Insight Discovery app running on the host is affected by a vulnerability as referenced in the JSDSERVER-15067 advisory. - This High severity Injection vulnerability was introduced in Assets Discovery 1.0 - 6.2.0 all...
Atlassian Jira Service Management Data Center and Server 4.20.x < 4.20.28 / 5.4.x < 5.4.12 / 5.5.x < 5.11.3 / 5.12.0 (JSDSERVER-14873)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14873 advisory. - HtmlUnit NekoHtml Parser before 2.61.0 suffers from a denial of service vulnerability. Crafted input...
Atlassian JIRA Service Desk < 4.20.28 / 5.4.x < 5.4.12 / 5.5.x < 5.11.3 / 5.12.0 (JSDSERVER-14872)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14872 advisory. - org.cyberneko.html is an html parser written in Java. The fork of org.cyberneko.html used by Nokogir...
Atlassian Jira Service Management Data Center and Server 4.20.x < 4.20.27 / 5.4.x < 5.4.11 (JSDSERVER-14751)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14751 advisory. - In FasterXML jackson-databind before 2.14.0-rc1, resource exhaustion can occur because of a lack of ...
Atlassian Jira Service Management Data Center and Server 4.20.x < 4.20.27 / 5.4.x < 5.4.11 (JSDSERVER-14754)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14754 advisory. - A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3,...
Atlassian Jira Service Management Data Center and Server 4.20.x < 4.20.27 / 5.4.x < 5.4.11 (JSDSERVER-14749)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14749 advisory. - jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a lar...
Atlassian JIRA Service Desk < 4.20.26 / 5.4.x < 5.4.10 / 5.5.x < 5.7.2 / 5.8.x < 5.8.2 / 5.9.x < 5.9.2 / 5.10.x < 5.10.1 (JSDSERVER-14401)
The version of Atlassian JIRA Service Desk Server running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14401 advisory. - XXE XML External Entity Injection in Jira Service Management Data Center and Server - CVE-2019-13990 CVE-2019-13990 Note that Nessus has not...
Atlassian JIRA Service Desk < 4.20.25 / 5.3.x < 5.4.9 / 5.9.x < 5.9.2 / 5.10.x < 5.10.1 (JSDSERVER-14007)
The version of Atlassian JIRA Service Desk Server running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14007 advisory. - The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace method in intern...
Atlassian Jira Service Desk < 4.13.9 Template Injection Code Execution
According to its self-reported version number, the Atlassian Jira Service Management application running on the remote host is version 4.14.x prior to 4.18.0. It is, therefore, affected by a flaw which may allow remote attackers with Jira Administrator access to execute arbitrary Java code or...
Atlassian Jira Service Desk 4.8.1 < 4.12.0 Information Disclosure In API and Integrations
According to its self-reported version number, the Atlassian Jira Service Desk application running on the remote host is version 4.8.x prior to 4.12.0. It is, therefore, affected by a flaw which may permit a remote attacker authenticated as a non-administrator user to view Project Request-Types a...
Atlassian JIRA Service Desk 5.3.x < 5.3.3 / 5.4.x < 5.4.2 / 5.5.x < 5.5.1 Impersonation (JSDSERVER-12312)
The instance of Atlassian Service Desk hosted on the remote web server is 5.3 prior to 5.3.3, 5.4 prior to 5.4.2 or 5.5 prior to 5.5.1. Is is, therefore, affected by an authentication vulnerability. A remote attacker included on Jira issues or requests with other users can impersonate those users...
Jira Service Desk Sign Up Detected
Atlassian Jira is a software application used for issue tracking and project management. An internal only Atlassian Jira Service Desk instance may be misconfigured to be accessible to 3rd parties to sign up, potentially leading to attackers creating accounts and raising ticket requests for...
Atlassian Jira Service Desk 4.9.1 Cross Site Scripting
Exploit Title: Atlassian Jira Service Desk 4.9.1 - Unrestricted File Upload to XSS Date: 07 Mar 2020 Exploit Author: Captainhook Vendor Homepage: https://www.atlassian.com/ Version: 4.10.0 Tested on: All OS CVE: CVE-2020-14166 Summary: The /servicedesk/customer/portals resource in Jira Service De...
Atlassian Jira Service Desk 4.9.1 - Unrestricted File Upload to XSS Vulnerability
Exploit Title: Atlassian Jira Service Desk 4.9.1 - Unrestricted File Upload to XSS Exploit Author: Captainhook Vendor Homepage: https://www.atlassian.com/ Version: 4.10.0 Tested on: All OS CVE: CVE-2020-14166 Summary: The /servicedesk/customer/portals resource in Jira Service Desk Server and Data...