WID-SEC-W-2026-1229

Vulnerability from csaf_certbund - Published: 2026-04-21 22:00 - Updated: 2026-05-25 22:00
Summary
Atlassian Bamboo, Bitbucket, Confluence, Jira: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Bamboo ist ein Werkzeug zur kontinuierlichen Integration und Bereitstellung, das automatisierte Builds, Tests und Freigaben in einem einzigen Arbeitsablauf verbindet. Bitbucket ist ein Git-Server zur Sourcecode-Versionskontrolle. Confluence ist eine kommerzielle Wiki-Software. Jira ist eine Webanwendung zur Softwareentwicklung.
Angriff: Ein Angreifer kann mehrere Schwachstellen in Atlassian Bamboo, Atlassian Bitbucket, Atlassian Confluence und Atlassian Jira ausnutzen, um beliebigen Programmcode auszuführen, Sicherheitsmaßnahmen zu umgehen, Daten zu manipulieren oder offenzulegen oder Cross-Site-Scripting-Angriffe durchzuführen.
Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows
CVE-2021-0341
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2021-31597
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2022-1471
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2022-25927
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2023-1370
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2023-3635
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2023-48631
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2024-29371
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2024-45801
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2024-47875
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2025-48734
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2025-66020
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-21571
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-22029
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-23745
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-23950
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-24734
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-24842
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-24880
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-25547
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-25639
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-26960
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-29063
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-31802
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-33870
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-33871
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
CVE-2026-34487
Affected products
Product Identifier Version Remediation
Atlassian Jira Service Management <10.3.19
Atlassian / Jira
 Service Management <10.3.19
Red Hat Enterprise Linux
Red Hat
 cpe:/o:redhat:enterprise_linux:-
Atlassian Bitbucket <10.2.2
Atlassian / Bitbucket
 <10.2.2
Atlassian Jira Service Management <11.3.4
Atlassian / Jira
 Service Management <11.3.4
Atlassian Jira <11.3.4
Atlassian / Jira
 <11.3.4
Atlassian Jira <10.3.19
Atlassian / Jira
 <10.3.19
Red Hat OpenShift Container Platform release 4.21.17
Red Hat / OpenShift
 cpe:/a:redhat:openshift:container_platform_release_4.21.17 Container Platform release 4.21.17
Atlassian Bamboo <12.1.6
Atlassian / Bamboo
 <12.1.6
Atlassian Confluence <9.2.19
Atlassian / Confluence
 <9.2.19
Atlassian Bamboo <10.2.18
Atlassian / Bamboo
 <10.2.18
Atlassian Confluence <10.2.10
Atlassian / Confluence
 <10.2.10
IBM App Connect Enterprise
IBM
 cpe:/a:ibm:app_connect_enterprise:-
Atlassian Bitbucket <9.4.19
Atlassian / Bitbucket
 <9.4.19
References
To clipboard 

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Bamboo ist ein Werkzeug zur kontinuierlichen Integration und Bereitstellung, das automatisierte Builds, Tests und Freigaben in einem einzigen Arbeitsablauf verbindet.\r\nBitbucket ist ein Git-Server zur Sourcecode-Versionskontrolle.\r\nConfluence ist eine kommerzielle Wiki-Software.\r\nJira ist eine Webanwendung zur Softwareentwicklung.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Atlassian Bamboo, Atlassian Bitbucket, Atlassian Confluence und Atlassian Jira ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, Daten zu manipulieren oder offenzulegen oder Cross-Site-Scripting-Angriffe durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-1229 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1229.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-1229 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1229"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin - April 21 2026 vom 2026-04-21",
        "url": "https://confluence.atlassian.com/security/security-bulletin-april-21-2026-1770913890.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10209 vom 2026-04-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:10209"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10205 vom 2026-04-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:10205"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10215 vom 2026-04-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:10215"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10206 vom 2026-04-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:10206"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10204 vom 2026-04-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:10204"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10211 vom 2026-04-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:10211"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10214 vom 2026-04-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:10214"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10213 vom 2026-04-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:10213"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:10201 vom 2026-04-23",
        "url": "https://access.redhat.com/errata/RHSA-2026:10201"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:11070 vom 2026-04-28",
        "url": "https://access.redhat.com/errata/RHSA-2026:11070"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7271910 vom 2026-05-06",
        "url": "https://www.ibm.com/support/pages/node/7271910"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:20034 vom 2026-05-26",
        "url": "https://access.redhat.com/errata/RHSA-2026:20034"
      }
    ],
    "source_lang": "en-US",
    "title": "Atlassian Bamboo, Bitbucket, Confluence, Jira: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-05-25T22:00:00.000+00:00",
      "generator": {
        "date": "2026-05-26T12:16:36.572+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-1229",
      "initial_release_date": "2026-04-21T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-04-21T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-04-23T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-04-27T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-05-06T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2026-05-25T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "5"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c12.1.6",
                "product": {
                  "name": "Atlassian Bamboo \u003c12.1.6",
                  "product_id": "T053202"
                }
              },
              {
                "category": "product_version",
                "name": "12.1.6",
                "product": {
                  "name": "Atlassian Bamboo 12.1.6",
                  "product_id": "T053202-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:12.1.6"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c10.2.18",
                "product": {
                  "name": "Atlassian Bamboo \u003c10.2.18",
                  "product_id": "T053203"
                }
              },
              {
                "category": "product_version",
                "name": "10.2.18",
                "product": {
                  "name": "Atlassian Bamboo 10.2.18",
                  "product_id": "T053203-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:10.2.18"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bamboo"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.2.2",
                "product": {
                  "name": "Atlassian Bitbucket \u003c10.2.2",
                  "product_id": "T053207"
                }
              },
              {
                "category": "product_version",
                "name": "10.2.2",
                "product": {
                  "name": "Atlassian Bitbucket 10.2.2",
                  "product_id": "T053207-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:10.2.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.4.19",
                "product": {
                  "name": "Atlassian Bitbucket \u003c9.4.19",
                  "product_id": "T053209"
                }
              },
              {
                "category": "product_version",
                "name": "9.4.19",
                "product": {
                  "name": "Atlassian Bitbucket 9.4.19",
                  "product_id": "T053209-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:9.4.19"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bitbucket"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.2.10",
                "product": {
                  "name": "Atlassian Confluence \u003c10.2.10",
                  "product_id": "T053211"
                }
              },
              {
                "category": "product_version",
                "name": "10.2.10",
                "product": {
                  "name": "Atlassian Confluence 10.2.10",
                  "product_id": "T053211-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:10.2.10"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.19",
                "product": {
                  "name": "Atlassian Confluence \u003c9.2.19",
                  "product_id": "T053213"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.19",
                "product": {
                  "name": "Atlassian Confluence 9.2.19",
                  "product_id": "T053213-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:9.2.19"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Confluence"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c11.3.4",
                "product": {
                  "name": "Atlassian Jira \u003c11.3.4",
                  "product_id": "T053215"
                }
              },
              {
                "category": "product_version",
                "name": "11.3.4",
                "product": {
                  "name": "Atlassian Jira 11.3.4",
                  "product_id": "T053215-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira:11.3.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c10.3.19",
                "product": {
                  "name": "Atlassian Jira \u003c10.3.19",
                  "product_id": "T053216"
                }
              },
              {
                "category": "product_version",
                "name": "10.3.19",
                "product": {
                  "name": "Atlassian Jira 10.3.19",
                  "product_id": "T053216-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira:10.3.19"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Service Management \u003c11.3.4",
                "product": {
                  "name": "Atlassian Jira Service Management \u003c11.3.4",
                  "product_id": "T053218"
                }
              },
              {
                "category": "product_version",
                "name": "Service Management 11.3.4",
                "product": {
                  "name": "Atlassian Jira Service Management 11.3.4",
                  "product_id": "T053218-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira:service_management__11.3.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Service Management \u003c10.3.19",
                "product": {
                  "name": "Atlassian Jira Service Management \u003c10.3.19",
                  "product_id": "T053221"
                }
              },
              {
                "category": "product_version",
                "name": "Service Management 10.3.19",
                "product": {
                  "name": "Atlassian Jira Service Management 10.3.19",
                  "product_id": "T053221-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira:service_management__10.3.19"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Jira"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "IBM App Connect Enterprise",
            "product": {
              "name": "IBM App Connect Enterprise",
              "product_id": "T052517",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:app_connect_enterprise:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Container Platform release 4.21.17",
                "product": {
                  "name": "Red Hat OpenShift Container Platform release 4.21.17",
                  "product_id": "T054688",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform_release_4.21.17"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenShift"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-0341",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2021-0341"
    },
    {
      "cve": "CVE-2021-31597",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2021-31597"
    },
    {
      "cve": "CVE-2022-1471",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2022-1471"
    },
    {
      "cve": "CVE-2022-25927",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2022-25927"
    },
    {
      "cve": "CVE-2023-1370",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2023-1370"
    },
    {
      "cve": "CVE-2023-3635",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2023-3635"
    },
    {
      "cve": "CVE-2023-48631",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2023-48631"
    },
    {
      "cve": "CVE-2024-29371",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2024-29371"
    },
    {
      "cve": "CVE-2024-45801",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2024-45801"
    },
    {
      "cve": "CVE-2024-47875",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2024-47875"
    },
    {
      "cve": "CVE-2025-48734",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2025-48734"
    },
    {
      "cve": "CVE-2025-66020",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2025-66020"
    },
    {
      "cve": "CVE-2026-21571",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-21571"
    },
    {
      "cve": "CVE-2026-22029",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-22029"
    },
    {
      "cve": "CVE-2026-23745",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-23745"
    },
    {
      "cve": "CVE-2026-23950",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-23950"
    },
    {
      "cve": "CVE-2026-24734",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-24734"
    },
    {
      "cve": "CVE-2026-24842",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-24842"
    },
    {
      "cve": "CVE-2026-24880",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-24880"
    },
    {
      "cve": "CVE-2026-25547",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-25547"
    },
    {
      "cve": "CVE-2026-25639",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-25639"
    },
    {
      "cve": "CVE-2026-26960",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-26960"
    },
    {
      "cve": "CVE-2026-29063",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-29063"
    },
    {
      "cve": "CVE-2026-31802",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-31802"
    },
    {
      "cve": "CVE-2026-33870",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-33870"
    },
    {
      "cve": "CVE-2026-33871",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-33871"
    },
    {
      "cve": "CVE-2026-34487",
      "product_status": {
        "known_affected": [
          "T053221",
          "67646",
          "T053207",
          "T053218",
          "T053215",
          "T053216",
          "T054688",
          "T053202",
          "T053213",
          "T053203",
          "T053211",
          "T052517",
          "T053209"
        ]
      },
      "release_date": "2026-04-21T22:00:00.000+00:00",
      "title": "CVE-2026-34487"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.





Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.


Detection rules are retrieved from Rulezet.