| CVE ID | CVSS3.1 | Exploitable | Vendor | Product | Vulnerability | Date added |
|---|---|---|---|---|---|---|
| CVE-2021-26086 | 5.3 | True | Atlassian | Jira Server and Data Center | Atlassian Jira Server and Data Center Path Traversal Vulnerability | 2024-11-12 00:00:00 |
| CVE-2023-22527 | 10.0 | True | Atlassian | Confluence Data Center and Server | Atlassian Confluence Data Center and Server Template Injection Vulnerability | 2024-01-24 00:00:00 |
| CVE-2023-22518 | 10.0 | True | Atlassian | Confluence Data Center and Server | Atlassian Confluence Data Center and Server Improper Authorization Vulnerability | 2023-11-07 00:00:00 |
| CVE-2023-22515 | 9.8 | True | Atlassian | Confluence Data Center and Server | Atlassian Confluence Data Center and Server Broken Access Control Vulnerability | 2023-10-05 00:00:00 |
| CVE-2022-36804 | 8.8 | True | Atlassian | Bitbucket Server and Data Center | Atlassian Bitbucket Server and Data Center Command Injection Vulnerability | 2022-09-30 00:00:00 |
| CVE-2022-26138 | 9.8 | True | Atlassian | Confluence | Atlassian Questions For Confluence App Hard-coded Credentials Vulnerability | 2022-07-29 00:00:00 |
| CVE-2022-26134 | 9.8 | True | Atlassian | Confluence Server/Data Center | Atlassian Confluence Server and Data Center Remote Code Execution Vulnerability | 2022-06-02 00:00:00 |
| CVE-2021-26085 | 5.3 | True | Atlassian | Confluence Server | Atlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability | 2022-03-28 00:00:00 |
| CVE-2019-11581 | 9.8 | True | Atlassian | Jira Server and Data Center | Atlassian Jira Server and Data Center Server-Side Template Injection Vulnerability | 2022-03-07 00:00:00 |
| CVE-2019-3396 | 9.8 | True | Atlassian | Confluence Server and Data Server | Atlassian Confluence Server and Data Center Server-Side Template Injection Vulnerability | 2021-11-03 00:00:00 |
| CVE-2019-11580 | 9.8 | True | Atlassian | Crowd and Crowd Data Center | Atlassian Crowd and Crowd Data Center Remote Code Execution Vulnerability | 2021-11-03 00:00:00 |
| CVE-2021-26084 | 9.8 | True | Atlassian | Confluence Server and Data Center | Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability | 2021-11-03 00:00:00 |
| CVE-2019-3398 | 8.8 | True | Atlassian | Confluence Server and Data Center | Atlassian Confluence Server and Data Center Path Traversal Vulnerability | 2021-11-03 00:00:00 |
AVET INS is an owner of VULNDBASE brand and website. This product uses data from the NVD API but is not endorsed or certified by the NVD. See NVD page for more information. CVE is a registered trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE site. CWE is a registered trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE page. KEV (Known Exploited Vulnerabilities) is a catalog maintained by CISA. EUVD is the official EU repository for timely, curated cybersecurity vulnerability intelligence and remediation guidance run by ENISA. DORA (Digital Operational Resilience Act) is and EU directive.
Copyright AVET INS 1997 - 2026