Lucene search
K

266 matches found

Atlassian
Atlassian
added 2026/06/12 9:16 p.m.8 views

Prototype Pollution axios Dependency in Jira Service Management Data Center and Server

This is a vulnerability in a non-Atlassian dependency. Atlassian's application of this dependency presents a lower, non-critical assessed risk. This Critical severity Prototype Pollution vulnerability was introduced in versions 10.3.0 and 11.3.0 of Jira Service Management Data Center and Server...

9CVSS5.7AI score0.01815EPSS
Exploits5
Atlassian
Atlassian
added 2026/06/11 5:30 p.m.8 views

RCE (Remote Code Execution) axios Dependency in Jira Service Management Data Center

This High severity RCE Remote Code Execution vulnerability was introduced in versions 5.17.2, 10.0.0, 10.1.1, 10.2.0, 10.3.0, 10.4.0, 10.5.0, 10.6.0, 10.7.1, 11.0.0, 11.1.0, 11.2.0, and 11.3.0 of Jira Service Management Data Center. This RCE Remote Code Execution vulnerability, with a CVSS Score ...

7CVSS6AI score0.00495EPSS
Exploits0
Atlassian
Atlassian
added 2026/06/11 12:0 p.m.5 views

DoS (Denial of Service) io.netty:netty-codec-http2 Dependency in Jira Service Management Data Center

This High severity DoS Denial of Service vulnerability was introduced in versions 5.17.0, 10.0.0, 10.1.1, 10.2.0, 10.3.0, 10.4.0, 10.5.0, 10.6.0, 10.7.1, 11.0.0, 11.1.0, 11.2.0, and 11.3.0 of Jira Service Management Data Center. This DoS Denial of Service vulnerability, with a CVSS Score of 8.7 a...

8.7CVSS5.4AI score0.01125EPSS
Exploits0
Atlassian
Atlassian
added 2026/06/11 11:54 a.m.9 views

HTTP Request Smuggling io.netty:netty-codec-http Dependency in Jira Service Management Data Center

This is a vulnerability in a non-Atlassian Jira dependency. Atlassian's application of this dependency presents a lower, non-critical assessed risk. This High severity HTTP Request Smuggling vulnerability was introduced in versions 10.3.0 and 11.3.0 of Jira Service Management Data Center. This HT...

7.5CVSS5.2AI score0.0064EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.24 views

Atlassian Jira Service Management Data Center and Server 5.15.2 < 10.3.20 / 10.4.x < 11.3.5 (JSDSERVER-16574)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16574 advisory. - The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior...

7.5CVSS6.3AI score0.0043EPSS
Exploits0References2
Atlassian
Atlassian
added 2026/06/03 4:30 p.m.7 views

Injection axios Dependency in Jira Service Management Data Center

This is a vulnerability in a non-Atlassian dependency. Atlassian's application of this dependency presents a lower, non-critical assessed risk. This Critical severity Injection vulnerability was introduced in versions 5.17.2, 10.3.12, 11.1.0, 11.2.0, and 11.3.0 of Jira Service Management Data...

9.1CVSS5.3AI score0.00549EPSS
Exploits1
Atlassian
Atlassian
added 2026/06/03 4:30 p.m.9 views

SSRF (Server-Side Request Forgery) axios Dependency in Jira Service Management Data Center

This is a vulnerability in a non-Atlassian dependency. Atlassian's application of this dependency presents a lower, non-critical assessed risk. This Critical severity SSRF Server-Side Request Forgery vulnerability was introduced in versions 5.17.2, 10.0.0, 10.1.1, 10.2.0, 10.3.0, 10.4.0, 10.5.0,...

9.9CVSS5.3AI score0.01186EPSS
Exploits1
Atlassian
Atlassian
added 2026/06/03 4:30 p.m.6 views

Injection axios Dependency in Jira Service Management Data Center

This High severity Injection vulnerability was introduced in versions 5.17.2, 10.0.0, 10.1.1, 10.2.0, 10.3.0, 10.4.0, 10.5.0, 10.6.0, 10.7.1, 11.0.0, 11.1.0, 11.2.0, and 11.3.0 of Jira Service Management Data Center. This Injection vulnerability, with a CVSS Score of 7.4 and a CVSS Vector of...

7.4CVSS5.3AI score0.00838EPSS
Exploits1
Atlassian
Atlassian
added 2026/06/03 4:30 p.m.13 views

HTTP Request Smuggling io.netty:netty-codec-http Dependency in Jira Service Management Data Center

This is a vulnerability in a non-Atlassian dependency. Atlassian's application of this dependency presents a lower, non-critical assessed risk. This Critical severity HTTP Request Smuggling vulnerability was introduced in versions 5.16.0, 5.17.0, 10.0.0, 10.1.1, 10.2.0, 10.3.0, 10.4.0, 10.5.0,...

9.1CVSS5.3AI score0.00633EPSS
Exploits1
Atlassian
Atlassian
added 2026/06/03 4:29 p.m.7 views

DoS (Denial of Service) io.netty:netty-codec Dependency in Jira Service Management Data Center

This High severity DoS Denial of Service vulnerability was introduced in versions 5.16.0, 5.17.0, 10.0.0, 10.1.1, 10.2.0, 10.3.0, 10.4.0, 10.5.0, 10.6.0, 10.7.1, 11.0.0, 11.1.0, 11.2.0, and 11.3.0 of Jira Service Management Data Center. This DoS Denial of Service vulnerability, with a CVSS Score ...

7.5CVSS5.4AI score0.00748EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.10 views

Atlassian Jira Service Management Data Center and Server 11.3.3 < 11.3.5 (JSDSERVER-16573)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16573 advisory. - File Inclusion vulnerability, allows an unauthenticated attacker to get the application to display t...

8.2CVSS6.5AI score0.00253EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.18 views

Atlassian Jira Service Management Data Center and Server 5.17.2 < 10.3.20 / 10.4.0 < 11.3.4 (JSDSERVER-16571)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16571 advisory. - This DoS Denial of Service vulnerability allows an unauthenticated attacker to cause a resource to b...

7.5CVSS7AI score0.02591EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.12 views

Atlassian Jira Service Management Data Center and Server 10.0.0 < 10.3.7 / 10.4.0 < 11.3.5 (JSDSERVER-16588)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16588 advisory. - This Security Headers Omission vulnerability allows an unauthenticated attacker to receive responses...

9.1CVSS7.3AI score0.0048EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.12 views

Atlassian Jira Service Management Data Center and Server 10.0.1 < 10.3.20 / 10.4.0 < 11.3.5 (JSDSERVER-16587)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16587 advisory. - This Improper Encoding, or Escaping of Output vulnerability, allows an unauthenticated attacker to...

7.5CVSS7.1AI score0.00461EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.12 views

Atlassian Jira Service Management Data Center and Server 10.0.0 < 10.3.20 / 10.4.0 < 11.3.5 (JSDSERVER-16577)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16577 advisory. - This DOM-based XSS vulnerability allows an unauthenticated attacker to execute arbitrary HTML or...

8CVSS7.2AI score0.0077EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.10 views

Atlassian Jira Service Management Data Center and Server 5.15.2 < 10.3.18 / 10.4.0 < 11.3.5 (JSDSERVER-16575)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16575 advisory. - This File Inclusion vulnerability allows an unauthenticated attacker to get the application to displ...

8.6CVSS6.5AI score0.00408EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.11 views

Atlassian Jira Service Management Data Center and Server 11.2.0 < 11.3.5 (JSDSERVER-16576)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16576 advisory. - jackson-core contains core low-level incremental streaming parser and generator abstractions used by...

8.7CVSS5.7AI score0.00552EPSS
Exploits0References2
Atlassian
Atlassian
added 2026/05/15 7:58 a.m.29 views

Security Headers Omission in Jira Service Management Data Center

This is a vulnerability in a non-Atlassian Jira Service Management dependency. Atlassian's application of this dependency presents a lower, non-critical assessed risk. This Critical severity Security Headers Omission vulnerability was introduced in versions 10.3.0 and 11.3.0 of Jira Service...

9.1CVSS7.2AI score0.0048EPSS
Exploits2
Atlassian
Atlassian
added 2026/05/15 7:49 a.m.23 views

Improper Encoding org.apache.tomcat:tomcat-catalina Dependency in Jira Service Management Data Center

This High severity Improper Encoding vulnerability known as CVE-2026-34483 was introduced in version 11.3.0. This Improper Encoding or Escaping of Output vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N allows an unauthenticated attacker to...

7.5CVSS5.8AI score0.00461EPSS
Exploits0
Atlassian
Atlassian
added 2026/05/12 5:29 p.m.7 views

Information Disclosure org.apache.tomcat:tomcat-catalina Dependency in Jira Service Management Data Center

This High severity Information Disclosure vulnerability was introduced in versions 5.15.2, 5.16.0, 5.17.0, 10.0.1, 10.1.1, 10.2.0, 10.3.0, 10.4.0, 10.5.0, 10.6.0, 10.7.1, 11.0.0, 11.1.0, 11.2.0, and 11.3.0 of Jira Service Management Data Center. This Information Disclosure vulnerability, with a...

7.5CVSS5.2AI score0.00447EPSS
Exploits0
Rows per page
Query Builder