Atlassian JIRA 8.19.0

CPE Details

Atlassian JIRA 8.19.0
atlassian
jira
8.19.0
2021-08-30
14h05 +00:00
2022-03-25
17h10 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:atlassian:jira:8.19.0:*:*:*:*:*:*:*

Informations

Vendor

atlassian

Product

jira

Version

8.19.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-43945 2022-02-28 00h20 +00:00 Affected versions of Atlassian Jira Server and Data Center allow remote attackers with Roadmaps Administrator permissions to inject arbitrary HTML or JavaScript via a Stored Cross-Site Scripting (SXSS) vulnerability in the /rest/jpo/1.0/hierarchyConfiguration endpoint. The affected versions are before version 8.20.3.
4.8
Moyen
CVE-2021-43953 2022-02-15 02h40 +00:00 Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to toggle the Thread Contention and CPU monitoring settings via a Cross-Site Request Forgery (CSRF) vulnerability in the /secure/admin/ViewInstrumentation.jspa endpoint. The affected versions are before version 8.13.16, and from version 8.14.0 before 8.20.5.
4.3
Moyen
CVE-2021-41312 2021-11-03 03h50 +00:00 Affected versions of Atlassian Jira Server and Data Center allow a remote attacker who has had their access revoked from Jira Service Management to enable and disable Issue Collectors on Jira Service Management projects via an Improper Authentication vulnerability in the /secure/ViewCollectors endpoint. The affected versions are before version 8.19.1.
7.5
Haute