Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Atlassian — Vulnerabilities & Security Advisories 399

Browse all 399 CVE security advisories affecting Atlassian. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Atlassian provides enterprise collaboration and project management software, primarily serving development teams through platforms like Jira and Confluence. With 399 recorded Common Vulnerabilities and Exposures (CVEs), the company’s software has historically been susceptible to critical security flaws, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation vulnerabilities. These issues often stem from improper input validation or authentication bypasses within their web interfaces and APIs. Notable incidents include the 2022 Jira Service Management vulnerability that allowed unauthenticated attackers to execute arbitrary code, highlighting risks associated with exposed administrative endpoints. The high volume of CVEs reflects the complexity of their extensive feature set and frequent updates, necessitating rigorous patch management and strict access controls for organizations relying on these tools for sensitive operational data and workflow automation.

Top products by Atlassian: Jira Server Jira Confluence Data Center Confluence Server Fisheye and Crucible Crucible Bitbucket Server Jira Align Jira Server and Data Center Crowd Fisheye Bamboo Jira Service Management Server Confluence Sourcetree for Windows Bamboo Data Center Application Links Bitbucket Data Center Jira Service Desk Server Atlassian Fisheye and Crucible Sourcetree for macOS Universal Plugin Manager Crowd Data Center Sourcetree for Mac Atlassian Application Links Companion App Confluence Questions Bamboo Server Jira Core Server Atlassian Connect Spring Boot (ACSB)
CVE IDTitleCVSSSeverityPublished
CVE-2017-18040 Atlassian Bamboo 跨站脚本漏洞 — Bamboo 6.1 -2018-02-02
CVE-2017-18041 Atlassian Bamboo 跨站脚本漏洞 — Bamboo 6.1 -2018-02-02
CVE-2017-18042 Atlassian Bamboo 跨站请求伪造漏洞 — Bamboo 8.8 -2018-02-02
CVE-2017-18080 Atlassian Bamboo 跨站请求伪造漏洞 — Bamboo 8.1 -2018-02-02
CVE-2017-18081 Atlassian Bamboo 跨站脚本漏洞 — Bamboo 6.1 -2018-02-02
CVE-2017-18082 Atlassian Bamboo 跨站脚本漏洞 — Bamboo 5.4 -2018-02-02
CVE-2017-18083 Atlassian Confluence Server 跨站脚本漏洞 — Confluence 5.4 -2018-02-02
CVE-2017-18084 Atlassian Confluence Server 跨站脚本漏洞 — Confluence 5.4 -2018-02-02
CVE-2017-18085 Atlassian Confluence Server 跨站脚本漏洞 — Confluence 6.1 -2018-02-02
CVE-2017-16861 Atlassian Fisheye和Crucible 安全漏洞 — Fisheye and Crucible 8.8 -2018-02-01
CVE-2017-16858 Atlassian Crowd crowd-application插件模块安全漏洞 — CrowdCWE-863 6.8 -2018-01-31
CVE-2017-9513 Atlassian Activity Streams 访问控制错误漏洞 — Activity StreamsCWE-284 5.4 -2018-01-29
CVE-2017-14592 Atlassian Sourcetree for macOS 安全漏洞 — Sourcetree for macOS 8.8 -2018-01-26
CVE-2017-14593 Atlassian Sourcetree for Windows 安全漏洞 — Sourcetree for Windows 8.8 -2018-01-26
CVE-2017-16863 Atlassian Jira PieChart gadget 跨站脚本漏洞 — Atlassian Jira 6.1 -2018-01-18
CVE-2017-18033 Atlassian Jira 跨站请求伪造漏洞 — Jira 6.5 -2018-01-18
CVE-2017-16865 Atlassian JIRA Trello importer 安全漏洞 — Jira 5.9 -2018-01-17
CVE-2017-14594 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2018-01-12
CVE-2017-16862 Atlassian Jira 跨站请求伪造漏洞 — Jira 4.3 -2018-01-12
CVE-2017-16864 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2018-01-12
CVE-2017-14589 Atlassian Bamboo 安全漏洞 — Bamboo 9.6 -2017-12-13
CVE-2017-14590 Atlassian Bamboo 安全漏洞 — Bamboo 7.2 -2017-12-13
CVE-2017-16856 Atlassian Confluence 跨站脚本漏洞 — Confluence 6.1 -2017-12-05
CVE-2017-16857 Atlassian auto-unapprove插件安全漏洞 — Auto-Unapprove Plugin (for Bitbucket Server) 8.8 -2017-12-05
CVE-2017-14591 Atlassian FishEye和Crucible 安全漏洞 — Fisheye and Crucible 10.0 -2017-11-29
CVE-2017-14585 Atlassian Hipchat Server和Hipchat Data Center 安全漏洞 — Hipchat Server 7.2 -2017-11-27
CVE-2017-14586 Hipchat for Mac desktop client 安全漏洞 — Hipchat for Mac desktop client 8.8 -2017-11-27
CVE-2017-9514 Atlassian Bamboo REST端点安全漏洞 — Bamboo 8.8 -2017-10-12
CVE-2017-14587 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Atlassian Fisheye and Crucible 5.4 -2017-10-11
CVE-2017-14588 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Atlassian Fisheye and Crucible 5.4 -2017-10-11

This page lists every published CVE security advisory associated with Atlassian. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.