CPE-D5DFB8AC-4B64-475A-A86C-96C0D9EDD725 Detail

CPE Details

Atlassian Jira Software Data Center 8.18.1

Vendor

atlassian

Product

jira_software_data_center

Version

8.18.1

Created

2021-12-08
13h18 +00:00

Modified

2022-03-28
11h53 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:atlassian:jira_software_data_center:8.18.1:::::::*

Informations

Vendor

atlassian

Product

jira_software_data_center

Version

8.18.1

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2021-41311	2021-12-08 03h35 +00:00	Affected versions of Atlassian Jira Server and Data Center allow attackers with access to an administrator account that has had its access revoked to modify projects' Users & Roles settings, via a Broken Authentication vulnerability in the /plugins/servlet/project-config/PROJECT/roles endpoint. The affected versions are before version 8.19.1.	7.5	High
CVE-2021-41309	2021-12-08 03h35 +00:00	Affected versions of Atlassian Jira Server and Data Center allow a user who has had their Jira Service Management access revoked to export audit logs of another user's Jira Service Management project via a Broken Authentication vulnerability in the /plugins/servlet/audit/resource endpoint. The affected versions of Jira Server and Data Center are before version 8.19.1.	5.3	Medium
CVE-2021-41310	2021-11-01 22h55 +00:00	Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the Associated Projects feature (/secure/admin/AssociatedProjectsForCustomField.jspa). The affected versions are before version 8.5.19, from version 8.6.0 before 8.13.11, and from version 8.14.0 before 8.19.1.	6.1	Medium
CVE-2021-41308	2021-10-26 04h15 +00:00	Affected versions of Atlassian Jira Server and Data Center allow authenticated yet non-administrator remote attackers to edit the File Replication settings via a Broken Access Control vulnerability in the `ReplicationSettings!default.jspa` endpoint. The affected versions are before version 8.6.0, from version 8.7.0 before 8.13.12, and from version 8.14.0 before 8.20.1.	6.5	Medium
CVE-2021-41307	2021-10-26 04h15 +00:00	Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to view the names of private projects and private filters via an Insecure Direct Object References (IDOR) vulnerability in the Workload Pie Chart Gadget. The affected versions are before version 8.13.12, and from version 8.14.0 before 8.20.0.	7.5	High
CVE-2021-41306	2021-10-26 04h15 +00:00	Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view private project and filter names via an Insecure Direct Object References (IDOR) vulnerability in the Average Time in Status Gadget. The affected versions are before version 8.13.12, and from version 8.14.0 before 8.20.0.	7.5	High

Atlassian Jira Software Data Center 8.18.1

CPE Details

CPE Name: cpe:2.3:a:atlassian:jira_software_data_center:8.18.1:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:atlassian:jira_software_data_center:8.18.1:::::::*