Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Atlassian — Vulnerabilities & Security Advisories 399

Browse all 399 CVE security advisories affecting Atlassian. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Atlassian provides enterprise collaboration and project management software, primarily serving development teams through platforms like Jira and Confluence. With 399 recorded Common Vulnerabilities and Exposures (CVEs), the company’s software has historically been susceptible to critical security flaws, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation vulnerabilities. These issues often stem from improper input validation or authentication bypasses within their web interfaces and APIs. Notable incidents include the 2022 Jira Service Management vulnerability that allowed unauthenticated attackers to execute arbitrary code, highlighting risks associated with exposed administrative endpoints. The high volume of CVEs reflects the complexity of their extensive feature set and frequent updates, necessitating rigorous patch management and strict access controls for organizations relying on these tools for sensitive operational data and workflow automation.

Top products by Atlassian: Jira Server Jira Confluence Data Center Confluence Server Fisheye and Crucible Crucible Bitbucket Server Jira Align Jira Server and Data Center Crowd Fisheye Bamboo Jira Service Management Server Confluence Sourcetree for Windows Bamboo Data Center Application Links Bitbucket Data Center Jira Service Desk Server Atlassian Fisheye and Crucible Sourcetree for macOS Universal Plugin Manager Crowd Data Center Sourcetree for Mac Atlassian Application Links Companion App Confluence Questions Bamboo Server Jira Core Server Atlassian Connect Spring Boot (ACSB)
CVE IDTitleCVSSSeverityPublished
CVE-2018-13389 Atlassian Confluence 安全漏洞 — Confluence 4.7 -2018-07-10
CVE-2017-16859 Atlassian FishEye和Crucible 路径遍历漏洞 — Fisheye and Crucible 6.5 -2018-06-28
CVE-2018-5231 Atlassian JIRA 安全漏洞 — Jira 7.5 -2018-05-16
CVE-2017-16860 Atlassian Application Links 跨站脚本漏洞 — Application Links 6.1 -2018-05-14
CVE-2018-5230 Atlassian Jira issue collector 跨站脚本漏洞 — Jira 6.1 -2018-05-14
CVE-2018-5226 Atlassian Sourcetree for Windows 安全漏洞 — SourceTree Windows 8.8 -2018-04-25
CVE-2018-5228 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Fisheye and Crucible 6.1 -2018-04-24
CVE-2017-18102 Atlassian atlassian-renderer wiki markup组件安全漏洞 — atlassian-renderer 6.1 -2018-04-17
CVE-2017-18101 Atlassian JIRA Server 安全漏洞 — JiraCWE-284 6.5 -2018-04-10
CVE-2018-5227 Atlassian Application Links 跨站脚本漏洞 — Atlassian Application Links 4.8 -2018-04-10
CVE-2017-18097 Atlassian Jira 跨站脚本漏洞 — Jira 5.4 -2018-04-06
CVE-2017-18098 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2018-04-06
CVE-2017-18096 Atlassian Application Links OAuth status rest resource 跨站请求伪造漏洞 — Atlassian Application Links 6.7 -2018-04-04
CVE-2018-5223 Atlassian Fisheye和Crucible 安全漏洞 — Fisheye and Crucible 7.2 -2018-03-29
CVE-2018-5224 Atlassian Bamboo 安全漏洞 — Bamboo 8.8 -2018-03-29
CVE-2017-18094 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Fisheye and Crucible 4.8 -2018-03-22
CVE-2018-5225 Atlassian Bitbucket Server 安全漏洞 — Bitbucket Server 9.9 -2018-03-22
CVE-2017-18092 Atlassian Crucible 跨站脚本漏洞 — Crucible 5.4 -2018-02-19
CVE-2017-18093 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Fisheye and Crucible 4.8 -2018-02-19
CVE-2017-18095 Atlassian Crucible 授权问题漏洞 — CrucibleCWE-863 6.5 -2018-02-19
CVE-2017-18089 Atlassian Crucible 跨站脚本漏洞 — Crucible 5.4 -2018-02-16
CVE-2017-18090 Atlassian Fisheye 跨站脚本漏洞 — Fisheye 5.4 -2018-02-16
CVE-2017-18091 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Fisheye and Crucible 4.8 -2018-02-16
CVE-2017-18087 Atlassian Bitbucket Server 权限许可和访问控制问题漏洞 — Bitbucket Server 8.8 -2018-02-15
CVE-2017-18034 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Fisheye and Crucible 5.4 -2018-02-02
CVE-2017-18035 Atlassian Fisheye和Crucible 安全漏洞 — Fisheye and CrucibleCWE-284 4.3 -2018-02-02
CVE-2017-18036 Atlassian Bitbucket Server Github repository importer 安全漏洞 — Bitbucket ServerCWE-918 4.3 -2018-02-02
CVE-2017-18037 Atlassian Bitbucket Server 路径遍历漏洞 — Bitbucket Server 6.5 -2018-02-02
CVE-2017-18038 Atlassian Bitbucket Server 路径遍历漏洞 — Bitbucket Server 4.3 -2018-02-02
CVE-2017-18039 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2018-02-02

This page lists every published CVE security advisory associated with Atlassian. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.