Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Atlassian — Vulnerabilities & Security Advisories 399

Browse all 399 CVE security advisories affecting Atlassian. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Atlassian provides enterprise collaboration and project management software, primarily serving development teams through platforms like Jira and Confluence. With 399 recorded Common Vulnerabilities and Exposures (CVEs), the company’s software has historically been susceptible to critical security flaws, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation vulnerabilities. These issues often stem from improper input validation or authentication bypasses within their web interfaces and APIs. Notable incidents include the 2022 Jira Service Management vulnerability that allowed unauthenticated attackers to execute arbitrary code, highlighting risks associated with exposed administrative endpoints. The high volume of CVEs reflects the complexity of their extensive feature set and frequent updates, necessitating rigorous patch management and strict access controls for organizations relying on these tools for sensitive operational data and workflow automation.

Top products by Atlassian: Jira Server Jira Confluence Data Center Confluence Server Fisheye and Crucible Crucible Bitbucket Server Jira Align Jira Server and Data Center Crowd Fisheye Bamboo Jira Service Management Server Confluence Sourcetree for Windows Bamboo Data Center Application Links Bitbucket Data Center Jira Service Desk Server Atlassian Fisheye and Crucible Sourcetree for macOS Universal Plugin Manager Crowd Data Center Sourcetree for Mac Atlassian Application Links Companion App Confluence Questions Bamboo Server Jira Core Server Atlassian Connect Spring Boot (ACSB)
CVE IDTitleCVSSSeverityPublished
CVE-2019-15006 Atlassian Companion 安全漏洞 — Confluence Server 3.7 -2019-12-19
CVE-2019-15013 Atlassian Jira 安全漏洞 — Jira 4.3 -2019-12-18
CVE-2017-18107 Atlassian Crowd 跨站请求伪造漏洞 — Crowd 6.5 -2019-12-17
CVE-2019-15011 Atlassian Application Links 安全漏洞 — Application Links 4.3 -2019-12-17
CVE-2019-15007 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Crucible 5.4 -2019-12-11
CVE-2019-15008 Atlassian Fisheye和Crucible 跨站脚本漏洞 — Crucible 6.1 -2019-12-11
CVE-2019-15009 Atlassian Fisheye和Crucible 安全漏洞 — Crucible 4.3 -2019-12-11
CVE-2019-15005 多款Atlassian产品Troubleshooting and Support Tools 安全漏洞 — Bitbucket Server 5.3 -2019-11-08
CVE-2019-15003 Atlassian Jira Service Desk Server和Atlassian Jira Service Desk Data Center Customer Context Filter 路径遍历漏洞 — Jira Service Desk Server 7.5 -2019-11-07
CVE-2019-15004 Atlassian Jira Service Desk Server和Atlassian Jira Service Desk Data Center Customer Context Filter 路径遍历漏洞 — Jira Service Desk Server 7.5 -2019-11-07
CVE-2019-15001 Atlassian JIRA Server和Data Center Jira Importers Plugin 代码注入漏洞 — Jira Server 7.2 -2019-09-19
CVE-2019-15000 Atlassian Bitbucket Server和Atlassian Bitbucket Data Center 操作系统命令注入漏洞 — Bitbucket Server 9.1 -2019-09-19
CVE-2019-14994 Atlassian Jira Service Desk Server和Atlassian Jira Service Desk Data Center Customer Context Filter 路径遍历漏洞 — Jira Service Desk Server 7.5 -2019-09-19
CVE-2019-14995 Atlassian Jira 安全漏洞 — JiraCWE-863 5.3 -2019-09-11
CVE-2019-14996 Atlassian Jira 跨站脚本漏洞 — Jira 6.1 -2019-09-11
CVE-2019-14997 Atlassian Jira 安全漏洞 — JiraCWE-524 4.3 -2019-09-11
CVE-2019-14998 Atlassian Jira 跨站请求伪造漏洞 — Jira 6.5 -2019-09-11
CVE-2019-8449 Atlassian Jira 访问控制错误漏洞 — Jira 5.3 -2019-09-11
CVE-2019-8450 Atlassian Jira Optimization插件跨站脚本漏洞 — Jira 4.8 -2019-09-11
CVE-2019-8451 Atlassian Jira 代码问题漏洞 — Jira 5.3 -2019-09-11
CVE-2019-3394 Atlassian Confluence Server和Confluence Data Center 信任管理问题漏洞 — Confluence Server 6.5 -2019-08-29
CVE-2019-11585 Atlassian Jira 输入验证错误漏洞 — Jira 6.1 -2019-08-23
CVE-2019-11586 Atlassian Jira 跨站请求伪造漏洞 — Jira 4.3 -2019-08-23
CVE-2019-11587 Atlassian Jira 跨站请求伪造漏洞 — Jira 6.5 -2019-08-23
CVE-2019-11588 Atlassian Jira 跨站请求伪造漏洞 — Jira 4.3 -2019-08-23
CVE-2019-11589 Atlassian Jira 输入验证错误漏洞 — Jira 6.1 -2019-08-23
CVE-2019-14999 Atlassian Universal Plugin Manager 跨站请求伪造漏洞 — Universal Plugin Manager 4.3 -2019-08-23
CVE-2019-8444 Atlassian Jira wikirenderer组件跨站脚本漏洞 — Jira 5.4 -2019-08-23
CVE-2019-8445 Atlassian Jira 授权问题漏洞 — JiraCWE-863 5.3 -2019-08-23
CVE-2019-8446 Atlassian Jira 授权问题漏洞 — JiraCWE-863 5.3 -2019-08-23

This page lists every published CVE security advisory associated with Atlassian. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.