Atlassian JIRA 8.20.0

CPE Details

Atlassian JIRA 8.20.0
atlassian
jira
8.20.0
2021-10-26
12h28 +00:00
2022-03-25
17h10 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:atlassian:jira:8.20.0:*:*:*:*:*:*:*

Informations

Vendor

atlassian

Product

jira

Version

8.20.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-43945 2022-02-28 00h20 +00:00 Affected versions of Atlassian Jira Server and Data Center allow remote attackers with Roadmaps Administrator permissions to inject arbitrary HTML or JavaScript via a Stored Cross-Site Scripting (SXSS) vulnerability in the /rest/jpo/1.0/hierarchyConfiguration endpoint. The affected versions are before version 8.20.3.
4.8
Moyen
CVE-2021-43953 2022-02-15 02h40 +00:00 Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to toggle the Thread Contention and CPU monitoring settings via a Cross-Site Request Forgery (CSRF) vulnerability in the /secure/admin/ViewInstrumentation.jspa endpoint. The affected versions are before version 8.13.16, and from version 8.14.0 before 8.20.5.
4.3
Moyen