Browse all 399 CVE security advisories affecting Atlassian. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Atlassian provides enterprise collaboration and project management software, primarily serving development teams through platforms like Jira and Confluence. With 399 recorded Common Vulnerabilities and Exposures (CVEs), the company’s software has historically been susceptible to critical security flaws, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation vulnerabilities. These issues often stem from improper input validation or authentication bypasses within their web interfaces and APIs. Notable incidents include the 2022 Jira Service Management vulnerability that allowed unauthenticated attackers to execute arbitrary code, highlighting risks associated with exposed administrative endpoints. The high volume of CVEs reflects the complexity of their extensive feature set and frequent updates, necessitating rigorous patch management and strict access controls for organizations relying on these tools for sensitive operational data and workflow automation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-20105 | Atlassian Application Links plugin 访问控制错误漏洞 — Application Links | 4.9 | - | 2020-03-17 |
| CVE-2019-20100 | Atlassian Jira Server和Data Center Application Links 跨站请求伪造漏洞 — Application Links | 6.5 | - | 2020-02-12 |
| CVE-2019-15011 | Atlassian Application Links 安全漏洞 — Application Links | 4.3 | - | 2019-12-17 |
| CVE-2017-18111 | Atlassian Application Links 代码问题漏洞 — Application Links | 8.7 | - | 2019-03-29 |
| CVE-2017-16860 | Atlassian Application Links 跨站脚本漏洞 — Application Links | 6.1 | - | 2018-05-14 |
This page lists every published CVE security advisory associated with Atlassian. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.