This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:atlassian:jira:7.6.12
Detail
VendorAtlassianFirst view 2018-04-10
ProductJiraLast view2019-09-19
Version7.6.12TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:atlassian:jira

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
92019-09-19CVE-2019-15001NetworkLowRequires ...
6.42019-09-11CVE-2019-8451NetworkLowNone Requ...
52019-09-11CVE-2019-8449NetworkLowNone Requ...
4.32019-09-11CVE-2019-14998NetworkMediumNone Requ...
52019-09-11CVE-2019-14995NetworkLowNone Requ...
Hide | Show 18 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52019-08-23CVE-2019-8446NetworkLowNone Requ...
4.32019-08-23CVE-2019-11588NetworkMediumNone Requ...
4.32019-08-23CVE-2019-11587NetworkMediumNone Requ...
4.32019-08-23CVE-2019-11586NetworkMediumNone Requ...
5.82019-08-23CVE-2019-11585NetworkMediumNone Requ...
4.32019-08-23CVE-2019-11584NetworkMediumNone Requ...
9.32019-08-09CVE-2019-11581NetworkMediumNone Requ...
3.52019-08-09CVE-2018-20827NetworkMediumRequires ...
42019-08-09CVE-2018-20826NetworkLowRequires ...
42019-06-26CVE-2019-11583NetworkLowRequires ...
6.82019-05-22CVE-2019-8443NetworkMediumNone Requ...
52019-05-22CVE-2019-8442NetworkLowNone Requ...
52019-05-22CVE-2019-3403NetworkLowNone Requ...
4.32019-05-22CVE-2019-3402NetworkMediumNone Requ...
52019-05-22CVE-2019-3401NetworkLowNone Requ...
4.32019-05-03CVE-2019-3400NetworkMediumNone Requ...
52019-04-30CVE-2019-3399NetworkLowNone Requ...
4.32018-04-10CVE-2017-18100NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
22% (5)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
18% (4)CWE-352Cross-Site Request Forgery (CSRF)
13% (3)CWE-285Improper Access Control (Authorization)
13% (3)CWE-284Access Control (Authorization) Issues
13% (3)CWE-200Information Exposure
Hide | Show 4 More...
%idName
4% (1)CWE-601URL Redirection to Untrusted Site ('Open Redirect')
4% (1)CWE-276Incorrect Default Permissions
4% (1)CWE-94Failure to Control Generation of Code ('Code Injection')
4% (1)CWE-74Failure to Sanitize Data into a Different Plane ('Injection')

Snort® IPS/IDS

DateDescription
2020-01-09Atlassian Jira makeRequest server side request forgery attempt
RuleID : 52406 - Type : SERVER-WEBAPP - Revision : 1
2019-10-01Atlassian Jira ContactAdministrators and SendBulkMail template injection remo...
RuleID : 51318 - Type : SERVER-WEBAPP - Revision : 1
2019-10-01Atlassian Jira ContactAdministrators and SendBulkMail template injection remo...
RuleID : 51317 - Type : SERVER-WEBAPP - Revision : 1
2019-10-01Atlassian Jira ContactAdministrators and SendBulkMail template injection remo...
RuleID : 51316 - Type : SERVER-WEBAPP - Revision : 1
2019-10-01Atlassian Jira ContactAdministrators and SendBulkMail template injection remo...
RuleID : 51315 - Type : SERVER-WEBAPP - Revision : 1