Known Vulnerabilities for Jira by Atlassian
Listed below are 10 of the newest known vulnerabilities associated with "Jira" by "Atlassian".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-2370 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 18.10 ... | Not Provided | 2026-03-30 | 2026-03-30 |
| CVE-2021-26081 | REST API in Atlassian Jira Server and Jira Data Center before version 8.5.14, from version 8.6.0 before 8.13.6, and from vers... | 5.3 - MEDIUM | 2021-07-20 | 2022-03-30 |
| CVE-2021-26080 | EditworkflowScheme.jspa in Jira Server and Jira Data Center before version 8.5.14, and from version 8.6.0 before version 8.13... | 6.1 - MEDIUM | 2021-06-07 | 2022-05-05 |
| CVE-2021-26079 | The CardLayoutConfigTable component in Jira Server and Jira Data Center before version 8.5.15, and from version 8.6.0 before ... | 6.1 - MEDIUM | 2021-06-07 | 2022-03-30 |
| CVE-2021-26078 | The number range searcher component in Jira Server and Jira Data Center before version 8.5.14, from version 8.6.0 before vers... | 6.1 - MEDIUM | 2021-06-07 | 2022-04-22 |
| CVE-2021-26076 | The jira.editor.user.mode cookie set by the Jira Editor Plugin in Jira Server and Data Center before version 8.5.12, from ver... | 3.7 - LOW | 2021-04-15 | 2022-03-30 |
| CVE-2021-26075 | The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from versio... | 4.3 - MEDIUM | 2021-04-15 | 2022-03-30 |
| CVE-2021-26071 | The SetFeatureEnabled.jspa resource in Jira Server and Data Center before version 8.5.13, from version 8.6.0 before version 8... | 3.5 - LOW | 2021-04-01 | 2022-03-30 |
| CVE-2021-26070 | Affected versions of Atlassian Jira Server and Data Center allow remote attackers to evade behind-the-firewall protection of ... | 7.2 - HIGH | 2021-03-22 | 2022-03-25 |
| CVE-2021-26069 | Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to download temporary files... | 5.3 - MEDIUM | 2021-03-22 | 2022-03-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Atlassian | Jira | 8.9.2 | All | All | All |
| Application | Atlassian | Jira | 8.9.1 | All | All | All |
| Application | Atlassian | Jira | 8.9.0 | All | All | All |
| Application | Atlassian | Jira | 8.8.2 | All | All | All |
| Application | Atlassian | Jira | 8.8.1 | All | All | All |
| Application | Atlassian | Jira | 8.8.0 | All | All | All |
| Application | Atlassian | Jira | 8.7.2 | All | All | All |
| Application | Atlassian | Jira | 8.7.1 | All | All | All |
| Application | Atlassian | Jira | 8.7.0 | All | All | All |
| Application | Atlassian | Jira | 8.6.2 | All | All | All |
| Application | Atlassian | Jira | 8.6.1 | All | All | All |
| Application | Atlassian | Jira | 8.6.0 | All | All | All |
| Application | Atlassian | Jira | 8.5.9 | All | All | All |
| Application | Atlassian | Jira | 8.5.8 | All | All | All |
| Application | Atlassian | Jira | 8.5.7 | All | All | All |
| Application | Atlassian | Jira | 8.5.6 | All | All | All |
| Application | Atlassian | Jira | 8.5.5 | All | All | All |
| Application | Atlassian | Jira | 8.5.4 | All | All | All |
| Application | Atlassian | Jira | 8.5.3 | All | All | All |
| Application | Atlassian | Jira | 8.5.2 | All | All | All |