Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Atlassian — Vulnerabilities & Security Advisories 399

Browse all 399 CVE security advisories affecting Atlassian. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Atlassian provides enterprise collaboration and project management software, primarily serving development teams through platforms like Jira and Confluence. With 399 recorded Common Vulnerabilities and Exposures (CVEs), the company’s software has historically been susceptible to critical security flaws, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation vulnerabilities. These issues often stem from improper input validation or authentication bypasses within their web interfaces and APIs. Notable incidents include the 2022 Jira Service Management vulnerability that allowed unauthenticated attackers to execute arbitrary code, highlighting risks associated with exposed administrative endpoints. The high volume of CVEs reflects the complexity of their extensive feature set and frequent updates, necessitating rigorous patch management and strict access controls for organizations relying on these tools for sensitive operational data and workflow automation.

Top products by Atlassian: Jira Server Jira Confluence Data Center Confluence Server Fisheye and Crucible Crucible Bitbucket Server Jira Align Jira Server and Data Center Crowd Fisheye Bamboo Jira Service Management Server Confluence Sourcetree for Windows Bamboo Data Center Application Links Bitbucket Data Center Jira Service Desk Server Atlassian Fisheye and Crucible Sourcetree for macOS Universal Plugin Manager Crowd Data Center Sourcetree for Mac Atlassian Application Links Companion App Confluence Questions Bamboo Server Jira Core Server Atlassian Connect Spring Boot (ACSB)
CVE IDTitleCVSSSeverityPublished
CVE-2019-8447 Atlassian Jira 跨站请求伪造漏洞 — Jira 4.3 -2019-08-23
CVE-2019-11584 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2019-08-23
CVE-2019-8448 Atlassian Jira 信息泄露漏洞 — Jira 5.3 -2019-08-13
CVE-2018-20826 Atlassian Jira 授权问题漏洞 — JiraCWE-863 4.3 -2019-08-09
CVE-2018-20827 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2019-08-09
CVE-2019-11581 Atlassian JIRA Data Center 注入漏洞 — Jira Server and Data Center 9.8 -2019-08-09
CVE-2019-11583 Atlassian Jira 访问控制错误漏洞 — Jira 4.3 -2019-06-26
CVE-2019-11582 Atlassian Sourcetree 参数注入漏洞 — Sourcetree for Windows 9.8 -2019-06-14
CVE-2019-3397 Atlassian Bitbucket Data Center migration tool 路径遍历漏洞 — Bitbucket Data Center 8.8 -2019-06-03
CVE-2019-11580 Atlassian Crowd和Atlassian Crowd Data Center 输入验证错误漏洞 — Crowd 9.8 -2019-06-03
CVE-2019-8442 Atlassian Jira 访问控制错误漏洞 — Jira 5.3 -2019-05-22
CVE-2019-3402 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2019-05-22
CVE-2019-8443 Atlassian Jira 授权问题漏洞 — Jira 9.1 -2019-05-22
CVE-2019-3403 Atlassian Jira 授权问题漏洞 — JiraCWE-863 5.3 -2019-05-22
CVE-2019-3401 Atlassian Jira 信息泄露漏洞 — JiraCWE-863 5.3 -2019-05-22
CVE-2018-20824 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2019-05-03
CVE-2019-3400 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2019-05-03
CVE-2018-20239 Atlassian Application Links 跨站脚本漏洞 — Atlassian Application Links 5.4 -2019-04-30
CVE-2019-3399 Atlassian Jira 信息泄露漏洞 — JiraCWE-863 7.5 -2019-04-30
CVE-2019-3398 Atlassian Confluence Server和Atlassian Data Center 路径遍历漏洞 — Confluence 8.8 -2019-04-18
CVE-2017-18105 Atlassian Crowd 授权问题漏洞 — Crowd 7.4 -2019-03-29
CVE-2017-18106 Atlassian Crowd 授权问题漏洞 — Crowd 7.5 -2019-03-29
CVE-2017-18108 Atlassian Crowd 代码注入漏洞 — Crowd 7.2 -2019-03-29
CVE-2017-18109 Atlassian Crowd 输入验证错误漏洞 — Crowd 6.1 -2019-03-29
CVE-2017-18110 Atlassian Crowd 代码问题漏洞 — Crowd 7.7 -2019-03-29
CVE-2017-18111 Atlassian Application Links 代码问题漏洞 — Application Links 8.7 -2019-03-29
CVE-2019-3395 Atlassian JIRA Data Center 代码问题漏洞 — Confluence Server 7.5 -2019-03-25
CVE-2019-3396 Atlassian Confluence Server 路径遍历漏洞 — Confluence Server 9.8 -2019-03-25
CVE-2018-20234 Atlassian Sourcetree 参数注入漏洞 — Sourcetree for macOS 8.8 -2019-03-08
CVE-2018-20235 Atlassian Sourcetree 命令注入漏洞 — Sourcetree for Windows 8.8 -2019-03-08

This page lists every published CVE security advisory associated with Atlassian. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.