atlassian security advisories

3 threat alerts tracking vulnerabilities and security advisories that affect atlassian products.

Vulnios monitors atlassian CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent atlassian security news in one place, or click into an individual alert for full detail.

Critical Vulnerability: CVE-2017-8768 — atlassian — sourcetree
Atlassian SourceTree v2.5c and prior are affected by a command injection in the handling of the sourcetree:// scheme. It will lead to arbitrary OS command execution with a URL substring of sourcetree:
criticalCVE-2017-8768
Critical Vulnerability: CVE-2017-7357 — atlassian — hipchat_server
Hipchat Server before 2.2.3 allows remote authenticated users with Server Administrator level privileges to execute arbitrary code by importing a file.
criticalCVE-2017-7357
Critical Vulnerability: CVE-2017-5983 — atlassian — jira
The JIRA Workflow Designer Plugin in Atlassian JIRA Server before 6.3.0 improperly uses an XML parser and deserializer, which allows remote attackers to execute arbitrary code, read arbitrary files, o
criticalCVE-2017-5983

Track atlassian exposure across your environment

Vulnios automatically cross-references your asset inventory against new atlassian CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.

Start a free scan

atlassian security advisories

Critical Vulnerability: CVE-2017-8768 — atlassian — sourcetree

Critical Vulnerability: CVE-2017-7357 — atlassian — hipchat_server

Critical Vulnerability: CVE-2017-5983 — atlassian — jira

Track atlassian exposure across your environment