Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Atlassian — Vulnerabilities & Security Advisories 399

Browse all 399 CVE security advisories affecting Atlassian. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Atlassian provides enterprise collaboration and project management software, primarily serving development teams through platforms like Jira and Confluence. With 399 recorded Common Vulnerabilities and Exposures (CVEs), the company’s software has historically been susceptible to critical security flaws, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation vulnerabilities. These issues often stem from improper input validation or authentication bypasses within their web interfaces and APIs. Notable incidents include the 2022 Jira Service Management vulnerability that allowed unauthenticated attackers to execute arbitrary code, highlighting risks associated with exposed administrative endpoints. The high volume of CVEs reflects the complexity of their extensive feature set and frequent updates, necessitating rigorous patch management and strict access controls for organizations relying on these tools for sensitive operational data and workflow automation.

Top products by Atlassian: Jira Server Jira Confluence Data Center Confluence Server Fisheye and Crucible Crucible Bitbucket Server Jira Align Jira Server and Data Center Crowd Fisheye Bamboo Jira Service Management Server Confluence Sourcetree for Windows Bamboo Data Center Application Links Bitbucket Data Center Jira Service Desk Server Atlassian Fisheye and Crucible Sourcetree for macOS Universal Plugin Manager Crowd Data Center Sourcetree for Mac Atlassian Application Links Companion App Confluence Questions Bamboo Server Jira Core Server Atlassian Connect Spring Boot (ACSB)
CVE IDTitleCVSSSeverityPublished
CVE-2019-20409 Atlassian JIRA Server和JIRA Data Center 注入漏洞 — Jira Server 9.8 -2020-06-23
CVE-2020-4026 Atlassian Navigator Links 安全漏洞 — Navigator Links 4.3 -2020-06-02
CVE-2020-4021 Atlassian JIRA Server和Data Center 跨站脚本漏洞 — Jira Server and Data Center 5.4 -2020-06-01
CVE-2020-4023 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Crucible 6.1 -2020-06-01
CVE-2020-4019 Atlassian Companion app 代码问题漏洞 — Companion App 7.8 -2020-06-01
CVE-2020-4020 Atlassian Companion app 安全漏洞 — Companion App 7.2 -2020-06-01
CVE-2020-4017 Atlassian Fisheye和Crucible 信息泄露漏洞 — Crucible 5.3 -2020-06-01
CVE-2020-4018 Atlassian Fisheye和Crucible 跨站请求伪造漏洞 — Crucible 8.8 -2020-06-01
CVE-2020-4015 Atlassian Fisheye和Crucible 信息泄露漏洞 — Crucible 5.3 -2020-06-01
CVE-2020-4016 Atlassian Fisheye和Crucible 信息泄露漏洞 — Crucible 5.3 -2020-06-01
CVE-2020-4013 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Crucible 5.4 -2020-06-01
CVE-2020-4014 Atlassian Fisheye和Crucible 授权问题漏洞 — Crucible 5.3 -2020-06-01
CVE-2019-20102 Atlassian Confluence Server 跨站脚本漏洞 — Confluence Server 6.1 -2020-04-22
CVE-2019-20407 Atlassian Jira Software和Jira Software Data Center 安全漏洞 — Jira Software 4.3 -2020-03-17
CVE-2019-20105 Atlassian Application Links plugin 访问控制错误漏洞 — Application Links 4.9 -2020-03-17
CVE-2019-20098 Atlassian Jira Server和Data Center 跨站请求伪造漏洞 — Jira Server 4.3 -2020-02-12
CVE-2019-20099 Atlassian JIRA Server和Data Center 跨站请求伪造漏洞 — Jira Server 4.3 -2020-02-12
CVE-2019-20100 Atlassian Jira Server和Data Center Application Links 跨站请求伪造漏洞 — Application Links 6.5 -2020-02-12
CVE-2019-20406 Atlassian Confluence 代码问题漏洞 — Confluence Data Center 7.8 -2020-02-06
CVE-2019-20403 Atlassian JIRA Server和Data Center 信息泄露漏洞 — Jira Server 5.3 -2020-02-06
CVE-2019-20404 Atlassian JIRA Server和Data Center 授权问题漏洞 — Jira Server 4.3 -2020-02-06
CVE-2019-20405 Atlassian JIRA Server和Data Center 跨站请求伪造漏洞 — Jira Server 4.3 -2020-02-06
CVE-2019-20401 Atlassian Jira 跨站请求伪造漏洞 — Jira Server 8.1 -2020-02-06
CVE-2019-20402 Atlassian JIRA Server和Data Center 授权问题漏洞 — Jira Server 7.2 -2020-02-06
CVE-2019-20106 Atlassian Jira Server和Data Center 安全漏洞 — Jira Server and Data Center 4.3 -2020-02-06
CVE-2019-20400 Atlassian Jira 代码问题漏洞 — Jira Server 7.8 -2020-02-06
CVE-2019-20104 Atlassian Crowd 安全漏洞 — Crowd 7.5 -2020-02-06
CVE-2019-15010 Bitbucket Server和Bitbucket Data Center 命令注入漏洞 — Bitbucket Server 8.8 -2020-01-15
CVE-2019-15012 Bitbucket Server和Bitbucket Data Center 安全漏洞 — Bitbucket Server 8.8 -2020-01-15
CVE-2019-20097 Bitbucket Server和Bitbucket Data Center 安全漏洞 — Bitbucket Server 8.8 -2020-01-15

This page lists every published CVE security advisory associated with Atlassian. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.