Vulnerability-Lookup

CVE-2026-42342 (GCVE-0-2026-42342)

Vulnerability from cvelistv5 – Published: 2026-06-02 18:23 – Updated: 2026-06-03 13:52

Title

React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint

Summary

React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the __manifest endpoint, resulting in response time degradation and/or service unavailability for end users. This affects React Router Framework Mode applications as well as Remix applications. This does not impact applications using Declarative Mode (`<BrowserRouter>`) or Data Mode (`createBrowserRouter/<RouterProvider>`). This is patched in react-router version 7.15.0 and @remix-run/server-runtime version 2.17.5.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-400 - Uncontrolled Resource Consumption

Assigner

GitHub_M

References

1 reference

URL	Tags
https://github.com/remix-run/react-router/securit…	x_refsource_CONFIRM

Impacted products

2 products

Vendor	Product	Version
remix-run	react-router	Affected: >= 7.0.0, < 7.15.0
remix-run	@remix-run/server-runtime	Affected: >= 2.10.0, < 2.17.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-42342",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-03T13:52:31.015400Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-03T13:52:43.400Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "react-router",
          "vendor": "remix-run",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 7.0.0, \u003c 7.15.0"
            }
          ]
        },
        {
          "product": "@remix-run/server-runtime",
          "vendor": "remix-run",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 2.10.0, \u003c 2.17.5"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the __manifest endpoint, resulting in response time degradation and/or service unavailability for end users. This affects React Router Framework Mode applications as well as Remix applications. This does not impact applications using Declarative Mode (`\u003cBrowserRouter\u003e`) or Data Mode (`createBrowserRouter/\u003cRouterProvider\u003e`). This is patched in react-router version 7.15.0 and @remix-run/server-runtime version 2.17.5."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-400",
              "description": "CWE-400: Uncontrolled Resource Consumption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-02T18:23:02.765Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/remix-run/react-router/security/advisories/GHSA-8x6r-g9mw-2r78",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/remix-run/react-router/security/advisories/GHSA-8x6r-g9mw-2r78"
        }
      ],
      "source": {
        "advisory": "GHSA-8x6r-g9mw-2r78",
        "discovery": "UNKNOWN"
      },
      "title": "React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2026-42342",
    "datePublished": "2026-06-02T18:23:02.765Z",
    "dateReserved": "2026-04-26T13:26:14.514Z",
    "dateUpdated": "2026-06-03T13:52:43.400Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2026-42342",
      "date": "2026-06-17",
      "epss": "0.00263",
      "percentile": "0.17414"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-42342\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-06-02T20:16:36.693\",\"lastModified\":\"2026-06-04T19:00:32.600\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the __manifest endpoint, resulting in response time degradation and/or service unavailability for end users. This affects React Router Framework Mode applications as well as Remix applications. This does not impact applications using Declarative Mode (`\u003cBrowserRouter\u003e`) or Data Mode (`createBrowserRouter/\u003cRouterProvider\u003e`). This is patched in react-router version 7.15.0 and @remix-run/server-runtime version 2.17.5.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:shopify:react-router:*:*:*:*:*:node.js:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.15.0\",\"matchCriteriaId\":\"C3DEED53-C992-4595-AAA9-7A2BD7C06BA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:shopify:remix-run\\\\/server-runtime:*:*:*:*:*:node.js:*:*\",\"versionStartIncluding\":\"2.10.0\",\"versionEndExcluding\":\"2.17.5\",\"matchCriteriaId\":\"7C1BF7A9-CED0-415C-95CA-0CB594732263\"}]}]}],\"references\":[{\"url\":\"https://github.com/remix-run/react-router/security/advisories/GHSA-8x6r-g9mw-2r78\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"cna\": {\"title\": \"React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint\", \"problemTypes\": [{\"descriptions\": [{\"cweId\": \"CWE-400\", \"lang\": \"en\", \"description\": \"CWE-400: Uncontrolled Resource Consumption\", \"type\": \"CWE\"}]}], \"metrics\": [{\"cvssV3_1\": {\"attackComplexity\": \"LOW\", \"attackVector\": \"NETWORK\", \"availabilityImpact\": \"HIGH\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"scope\": \"UNCHANGED\", \"userInteraction\": \"NONE\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"version\": \"3.1\"}}], \"references\": [{\"name\": \"https://github.com/remix-run/react-router/security/advisories/GHSA-8x6r-g9mw-2r78\", \"tags\": [\"x_refsource_CONFIRM\"], \"url\": \"https://github.com/remix-run/react-router/security/advisories/GHSA-8x6r-g9mw-2r78\"}], \"affected\": [{\"vendor\": \"remix-run\", \"product\": \"react-router\", \"versions\": [{\"version\": \"\u003e= 7.0.0, \u003c 7.15.0\", \"status\": \"affected\"}]}, {\"vendor\": \"remix-run\", \"product\": \"@remix-run/server-runtime\", \"versions\": [{\"version\": \"\u003e= 2.10.0, \u003c 2.17.5\", \"status\": \"affected\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-06-02T18:23:02.765Z\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the __manifest endpoint, resulting in response time degradation and/or service unavailability for end users. This affects React Router Framework Mode applications as well as Remix applications. This does not impact applications using Declarative Mode (`\u003cBrowserRouter\u003e`) or Data Mode (`createBrowserRouter/\u003cRouterProvider\u003e`). This is patched in react-router version 7.15.0 and @remix-run/server-runtime version 2.17.5.\"}], \"source\": {\"advisory\": \"GHSA-8x6r-g9mw-2r78\", \"discovery\": \"UNKNOWN\"}}, \"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-42342\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-06-03T13:52:31.015400Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-06-03T13:52:37.648Z\"}}]}",
      "cveMetadata": "{\"cveId\": \"CVE-2026-42342\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"state\": \"PUBLISHED\", \"assignerShortName\": \"GitHub_M\", \"dateReserved\": \"2026-04-26T13:26:14.514Z\", \"datePublished\": \"2026-06-02T18:23:02.765Z\", \"dateUpdated\": \"2026-06-03T13:52:43.400Z\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

FKIE_CVE-2026-42342

Vulnerability from fkie_nvd - Published: 2026-06-02 20:16 - Updated: 2026-06-17 10:47

Severity

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

References

	URL	Tags
	security-advisories@github.com	https://github.com/remix-run/react-router/security/advisories/GHSA-8x6r-g9mw-2r78	Vendor Advisory

Impacted products

	Vendor	Product	Version
	shopify	react-router	*
	shopify	remix-run\/server-runtime	*

JSON

To clipboard

{
  "affected": [
    {
      "affectedData": [
        {
          "product": "react-router",
          "vendor": "remix-run",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 7.0.0, \u003c 7.15.0"
            }
          ]
        },
        {
          "product": "@remix-run/server-runtime",
          "vendor": "remix-run",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 2.10.0, \u003c 2.17.5"
            }
          ]
        }
      ],
      "source": "security-advisories@github.com"
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:shopify:react-router:*:*:*:*:*:node.js:*:*",
              "matchCriteriaId": "C3DEED53-C992-4595-AAA9-7A2BD7C06BA6",
              "versionEndExcluding": "7.15.0",
              "versionStartIncluding": "7.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:shopify:remix-run\\/server-runtime:*:*:*:*:*:node.js:*:*",
              "matchCriteriaId": "7C1BF7A9-CED0-415C-95CA-0CB594732263",
              "versionEndExcluding": "2.17.5",
              "versionStartIncluding": "2.10.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the __manifest endpoint, resulting in response time degradation and/or service unavailability for end users. This affects React Router Framework Mode applications as well as Remix applications. This does not impact applications using Declarative Mode (`\u003cBrowserRouter\u003e`) or Data Mode (`createBrowserRouter/\u003cRouterProvider\u003e`). This is patched in react-router version 7.15.0 and @remix-run/server-runtime version 2.17.5."
    }
  ],
  "id": "CVE-2026-42342",
  "lastModified": "2026-06-17T10:47:42.793",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      }
    ],
    "ssvcV203": [
      {
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "ssvcData": {
          "id": "CVE-2026-42342",
          "options": [
            {
              "exploitation": "none"
            },
            {
              "automatable": "yes"
            },
            {
              "technicalImpact": "partial"
            }
          ],
          "role": "CISA Coordinator",
          "timestamp": "2026-06-03T13:52:31.015400Z",
          "version": "2.0.3"
        }
      }
    ]
  },
  "published": "2026-06-02T20:16:36.693",
  "references": [
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://github.com/remix-run/react-router/security/advisories/GHSA-8x6r-g9mw-2r78"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-400"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Secondary"
    }
  ]
}

GHSA-8X6R-G9MW-2R78

Vulnerability from github – Published: 2026-06-03 21:05 – Updated: 2026-06-03 21:05

Summary

React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint

Details

There exists a potential DOS attack vector in React Router Framework Mode applications (as well as Remix v2.10.0 - 2.17.4). Certain requests can be crafted to consume disproportionate resources on the server, resulting in response time degredation and/or service unavailability for end users.

[!NOTE] This does not impact your React Router application if you are using Declarative Mode (<BrowserRouter>) or Data Mode (createBrowserRouter/<RouterProvider>).

Severity

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "npm",
        "name": "react-router"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "7.0.0"
            },
            {
              "fixed": "7.15.0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "npm",
        "name": "@remix-run/server-runtime"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.10.0"
            },
            {
              "fixed": "2.17.5"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2026-42342"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-400"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2026-06-03T21:05:17Z",
    "nvd_published_at": "2026-06-02T20:16:36Z",
    "severity": "HIGH"
  },
  "details": "There exists a potential DOS attack vector in React Router Framework Mode applications (as well as Remix v2.10.0 - 2.17.4).  Certain requests can be crafted to consume disproportionate resources on the server, resulting in response time degredation and/or service unavailability for end users.\n\n\u003e [!NOTE]\n\u003e This does not impact your React Router application if you are using [Declarative Mode](https://reactrouter.com/start/modes#declarative) (`\u003cBrowserRouter\u003e`) or [Data Mode](https://reactrouter.com/start/modes#data) (`createBrowserRouter`/`\u003cRouterProvider\u003e`).",
  "id": "GHSA-8x6r-g9mw-2r78",
  "modified": "2026-06-03T21:05:17Z",
  "published": "2026-06-03T21:05:17Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/remix-run/react-router/security/advisories/GHSA-8x6r-g9mw-2r78"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42342"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/remix-run/react-router"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint"
}

WID-SEC-W-2026-1955

Vulnerability from csaf_certbund - Published: 2026-06-16 22:00 - Updated: 2026-06-16 22:00

Summary

Atlassian Bamboo, Bitbucket, Confluence, Fisheye, Crucible, Jira und Jira Service Management: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Bamboo ist ein Werkzeug zur kontinuierlichen Integration und Bereitstellung, das automatisierte Builds, Tests und Freigaben in einem einzigen Arbeitsablauf verbindet. Bitbucket ist ein Git-Server zur Sourcecode-Versionskontrolle. Confluence ist eine kommerzielle Wiki-Software. Fisheye ist ein Quellcode-Repository-Browser für Unternehmensteams. Crucible ist eine Code-Review-Lösung für Unternehmensteams. Jira ist eine Webanwendung zur Softwareentwicklung.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Atlassian Bamboo, Bitbucket, Confluence, Fisheye, Crucible, Jira und Jira Service Management ausnutzen, um beliebigen Code auszuführen, erweiterte Berechtigungen zu erlangen, Sicherheitsmaßnahmen zu umgehen, Daten zu manipulieren, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand auszulösen.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2019-11272

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2021-3803

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2022-1471

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2022-22965

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2022-22978

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2022-31692

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2024-22257

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2025-22228

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-22732

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-24734

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-26996

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-27903

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-27904

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-29129

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-33870

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-33871

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-34077

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-34486

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-34487

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-40175

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-41044

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-41284

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-41293

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42033

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42035

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42038

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42043

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42198

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42211

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42264

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42342

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42498

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42579

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42581

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42583

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42584

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42585

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-42587

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-43512

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-43513

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-43515

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-44486

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-44487

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-44488

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-44492

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-44495

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-44496

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-45149

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

CVE-2026-45736

Affected products

Known affected 13 products

Product	Identifier	Version	Remediation
Atlassian Crucible <4.9.11 Atlassian / Crucible		<4.9.11
Atlassian Fisheye <4.9.11 Atlassian / Fisheye		<4.9.11
Atlassian Confluence Data Center <9.2.21 Atlassian / Confluence		Data Center <9.2.21
Atlassian Confluence Data Center <10.2.13 Atlassian / Confluence		Data Center <10.2.13
Atlassian Bitbucket Data Center <10.3.1 Atlassian / Bitbucket		Data Center <10.3.1
Atlassian Bitbucket Data Center <9.4.21 Atlassian / Bitbucket		Data Center <9.4.21
Atlassian Bitbucket Data Center <10.2.4 Atlassian / Bitbucket		Data Center <10.2.4
Atlassian Jira Service Management Data Center and Server <10.3.22 Atlassian / Jira		Service Management Data Center and Server <10.3.22
Atlassian Jira Service Management Data Center and Server <11.3.7 Atlassian / Jira		Service Management Data Center and Server <11.3.7
Atlassian Bamboo Data Center <12.1.8 Atlassian / Bamboo		Data Center <12.1.8
Atlassian Jira Data Center <10.3.22 Atlassian / Jira		Data Center <10.3.22
Atlassian Jira Data Center <11.3.7 Atlassian / Jira		Data Center <11.3.7
Atlassian Bamboo Data Center <10.2.20 Atlassian / Bamboo		Data Center <10.2.20

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://confluence.atlassian.com/security/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Bamboo ist ein Werkzeug zur kontinuierlichen Integration und Bereitstellung, das automatisierte Builds, Tests und Freigaben in einem einzigen Arbeitsablauf verbindet.\r\nBitbucket ist ein Git-Server zur Sourcecode-Versionskontrolle.\r\nConfluence ist eine kommerzielle Wiki-Software.\r\nFisheye ist ein Quellcode-Repository-Browser f\u00fcr Unternehmensteams. \r\nCrucible ist eine Code-Review-L\u00f6sung f\u00fcr Unternehmensteams.\r\nJira ist eine Webanwendung zur Softwareentwicklung.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Atlassian Bamboo, Bitbucket, Confluence, Fisheye, Crucible, Jira und Jira Service Management ausnutzen, um beliebigen Code auszuf\u00fchren, erweiterte Berechtigungen zu erlangen, Sicherheitsma\u00dfnahmen zu umgehen, Daten zu manipulieren, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand auszul\u00f6sen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-1955 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1955.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-1955 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1955"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin Juni vom 2026-06-16",
        "url": "https://confluence.atlassian.com/security/security-bulletin-june-16-2026-1796309326.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Atlassian Bamboo, Bitbucket, Confluence, Fisheye, Crucible, Jira und Jira Service Management: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-06-16T22:00:00.000+00:00",
      "generator": {
        "date": "2026-06-17T09:14:54.948+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-1955",
      "initial_release_date": "2026-06-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-06-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Data Center \u003c12.1.8",
                "product": {
                  "name": "Atlassian Bamboo Data Center \u003c12.1.8",
                  "product_id": "T055489"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 12.1.8",
                "product": {
                  "name": "Atlassian Bamboo Data Center 12.1.8",
                  "product_id": "T055489-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:data_center__12.1.8"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Data Center \u003c10.2.20",
                "product": {
                  "name": "Atlassian Bamboo Data Center \u003c10.2.20",
                  "product_id": "T055490"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 10.2.20",
                "product": {
                  "name": "Atlassian Bamboo Data Center 10.2.20",
                  "product_id": "T055490-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:data_center__10.2.20"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bamboo"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Data Center \u003c10.2.4",
                "product": {
                  "name": "Atlassian Bitbucket Data Center \u003c10.2.4",
                  "product_id": "T055492"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 10.2.4",
                "product": {
                  "name": "Atlassian Bitbucket Data Center 10.2.4",
                  "product_id": "T055492-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:data_center__10.2.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Data Center \u003c9.4.21",
                "product": {
                  "name": "Atlassian Bitbucket Data Center \u003c9.4.21",
                  "product_id": "T055493"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 9.4.21",
                "product": {
                  "name": "Atlassian Bitbucket Data Center 9.4.21",
                  "product_id": "T055493-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:data_center__9.4.21"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Data Center \u003c10.3.1",
                "product": {
                  "name": "Atlassian Bitbucket Data Center \u003c10.3.1",
                  "product_id": "T055494"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 10.3.1",
                "product": {
                  "name": "Atlassian Bitbucket Data Center 10.3.1",
                  "product_id": "T055494-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:data_center__10.3.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bitbucket"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Data Center \u003c10.2.13",
                "product": {
                  "name": "Atlassian Confluence Data Center \u003c10.2.13",
                  "product_id": "T055495"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 10.2.13",
                "product": {
                  "name": "Atlassian Confluence Data Center 10.2.13",
                  "product_id": "T055495-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:data_center__10.2.13"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Data Center \u003c9.2.21",
                "product": {
                  "name": "Atlassian Confluence Data Center \u003c9.2.21",
                  "product_id": "T055496"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 9.2.21",
                "product": {
                  "name": "Atlassian Confluence Data Center 9.2.21",
                  "product_id": "T055496-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:data_center__9.2.21"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Confluence"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c4.9.11",
                "product": {
                  "name": "Atlassian Crucible \u003c4.9.11",
                  "product_id": "T055498"
                }
              },
              {
                "category": "product_version",
                "name": "4.9.11",
                "product": {
                  "name": "Atlassian Crucible 4.9.11",
                  "product_id": "T055498-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:crucible:4.9.11"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Crucible"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c4.9.11",
                "product": {
                  "name": "Atlassian Fisheye \u003c4.9.11",
                  "product_id": "T055497"
                }
              },
              {
                "category": "product_version",
                "name": "4.9.11",
                "product": {
                  "name": "Atlassian Fisheye 4.9.11",
                  "product_id": "T055497-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:fisheye:4.9.11"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Fisheye"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Data Center \u003c11.3.7",
                "product": {
                  "name": "Atlassian Jira Data Center \u003c11.3.7",
                  "product_id": "T055499"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 11.3.7",
                "product": {
                  "name": "Atlassian Jira Data Center 11.3.7",
                  "product_id": "T055499-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira:data_center__11.3.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Data Center \u003c10.3.22",
                "product": {
                  "name": "Atlassian Jira Data Center \u003c10.3.22",
                  "product_id": "T055500"
                }
              },
              {
                "category": "product_version",
                "name": "Data Center 10.3.22",
                "product": {
                  "name": "Atlassian Jira Data Center 10.3.22",
                  "product_id": "T055500-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira:data_center__10.3.22"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Service Management Data Center and Server \u003c11.3.7",
                "product": {
                  "name": "Atlassian Jira Service Management Data Center and Server \u003c11.3.7",
                  "product_id": "T055501"
                }
              },
              {
                "category": "product_version",
                "name": "Service Management Data Center and Server 11.3.7",
                "product": {
                  "name": "Atlassian Jira Service Management Data Center and Server 11.3.7",
                  "product_id": "T055501-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira:service_management_data_center_and_server__11.3.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Service Management Data Center and Server \u003c10.3.22",
                "product": {
                  "name": "Atlassian Jira Service Management Data Center and Server \u003c10.3.22",
                  "product_id": "T055502"
                }
              },
              {
                "category": "product_version",
                "name": "Service Management Data Center and Server 10.3.22",
                "product": {
                  "name": "Atlassian Jira Service Management Data Center and Server 10.3.22",
                  "product_id": "T055502-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira:service_management_data_center_and_server__10.3.22"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Jira"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-11272",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2019-11272"
    },
    {
      "cve": "CVE-2021-3803",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2021-3803"
    },
    {
      "cve": "CVE-2022-1471",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2022-1471"
    },
    {
      "cve": "CVE-2022-22965",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2022-22965"
    },
    {
      "cve": "CVE-2022-22978",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2022-22978"
    },
    {
      "cve": "CVE-2022-31692",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2022-31692"
    },
    {
      "cve": "CVE-2024-22257",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2024-22257"
    },
    {
      "cve": "CVE-2025-22228",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2025-22228"
    },
    {
      "cve": "CVE-2026-22732",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-22732"
    },
    {
      "cve": "CVE-2026-24734",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-24734"
    },
    {
      "cve": "CVE-2026-26996",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-26996"
    },
    {
      "cve": "CVE-2026-27903",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-27903"
    },
    {
      "cve": "CVE-2026-27904",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-27904"
    },
    {
      "cve": "CVE-2026-29129",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-29129"
    },
    {
      "cve": "CVE-2026-33870",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-33870"
    },
    {
      "cve": "CVE-2026-33871",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-33871"
    },
    {
      "cve": "CVE-2026-34077",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-34077"
    },
    {
      "cve": "CVE-2026-34486",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-34486"
    },
    {
      "cve": "CVE-2026-34487",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-34487"
    },
    {
      "cve": "CVE-2026-40175",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-40175"
    },
    {
      "cve": "CVE-2026-41044",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-41044"
    },
    {
      "cve": "CVE-2026-41284",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-41284"
    },
    {
      "cve": "CVE-2026-41293",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-41293"
    },
    {
      "cve": "CVE-2026-42033",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42033"
    },
    {
      "cve": "CVE-2026-42035",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42035"
    },
    {
      "cve": "CVE-2026-42038",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42038"
    },
    {
      "cve": "CVE-2026-42043",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42043"
    },
    {
      "cve": "CVE-2026-42198",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42198"
    },
    {
      "cve": "CVE-2026-42211",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42211"
    },
    {
      "cve": "CVE-2026-42264",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42264"
    },
    {
      "cve": "CVE-2026-42342",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42342"
    },
    {
      "cve": "CVE-2026-42498",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42498"
    },
    {
      "cve": "CVE-2026-42579",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42579"
    },
    {
      "cve": "CVE-2026-42581",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42581"
    },
    {
      "cve": "CVE-2026-42583",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42583"
    },
    {
      "cve": "CVE-2026-42584",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42584"
    },
    {
      "cve": "CVE-2026-42585",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42585"
    },
    {
      "cve": "CVE-2026-42587",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-42587"
    },
    {
      "cve": "CVE-2026-43512",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-43512"
    },
    {
      "cve": "CVE-2026-43513",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-43513"
    },
    {
      "cve": "CVE-2026-43515",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-43515"
    },
    {
      "cve": "CVE-2026-44486",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-44486"
    },
    {
      "cve": "CVE-2026-44487",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-44487"
    },
    {
      "cve": "CVE-2026-44488",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-44488"
    },
    {
      "cve": "CVE-2026-44492",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-44492"
    },
    {
      "cve": "CVE-2026-44495",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-44495"
    },
    {
      "cve": "CVE-2026-44496",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-44496"
    },
    {
      "cve": "CVE-2026-45149",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-45149"
    },
    {
      "cve": "CVE-2026-45736",
      "product_status": {
        "known_affected": [
          "T055498",
          "T055497",
          "T055496",
          "T055495",
          "T055494",
          "T055493",
          "T055492",
          "T055502",
          "T055501",
          "T055489",
          "T055500",
          "T055499",
          "T055490"
        ]
      },
      "release_date": "2026-06-16T22:00:00.000+00:00",
      "title": "CVE-2026-45736"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2026-42342 (GCVE-0-2026-42342)

FKIE_CVE-2026-42342

GHSA-8X6R-G9MW-2R78

WID-SEC-W-2026-1955

Tags

Sightings

Nomenclature