threat
engine
.sh
Back
·
··:··
Home
/
Product
/
atlassian jira service management
Product
atlassian jira service management
16 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2024-21683
>= 5.4.0 and < 5.4.21
This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of Confluence Data Center and Server.
8.8
HIGH
CVE-2023-22501
>= 5.3.0 and < 5.3.3
An authentication vulnerability was discovered in Jira Service Management Server and Data Center which allows an attacker to imper
9.1
CRITICAL
CVE-2022-36800
< 4.22.2
Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers without the "Browse Users" pe
4.3
MEDIUM
CVE-2021-43959
>= 4.14.0 and < 4.20.8
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to access the c
5.7
MEDIUM
CVE-2022-26137
>= 4.14.0 and < 4.20.10
A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to cause additional Servlet Filters to be
8.8
HIGH
CVE-2022-26136
>= 4.14.0 and < 4.20.10
A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to bypass Servlet Filters used by first a
9.8
CRITICAL
CVE-2022-26135
>= 4.14.0 and < 4.20.10
A vulnerability in Mobile Plugin for Jira Data Center and Server allows a remote, authenticated user (including a user who joined
6.5
MEDIUM
CVE-2022-0540
< 4.13.18
A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted H
9.8
CRITICAL
CVE-2021-43943
< 4.21.0
Affected versions of Atlassian Jira Service Management Server and Data Center allow attackers with administrator privileges to inj
4.8
MEDIUM
CVE-2021-43948
< 4.21.0
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view the nam
4.3
MEDIUM
CVE-2021-43950
< 4.21.0
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view import
4.3
MEDIUM
CVE-2021-43951
< 4.21.0
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view object
4.3
MEDIUM
CVE-2021-43949
< 4.21.0
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view private
4.3
MEDIUM
CVE-2021-39115
>= 4.14.0 and < 4.18.0
Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers with "Jira Administrators" ac
7.2
HIGH
CVE-2020-36239
>= 4.14.0 and < 4.17.0
Jira Data Center, Jira Core Data Center, Jira Software Data Center from version 6.3.0 before 8.5.16, from 8.6.0 before 8.13.8, fro
9.8
CRITICAL
CVE-2019-13990
all versions
initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3.0 allows XXE attacks via a jo
9.8
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin