1000
VMScore

CVE-2010-1165

CVSSv4: NA | CVSSv3: NA | CVSSv2: 9 | VMScore: 1000 | EPSS: 0.02136 | KEV: Not Included
Published: 20/04/2010 Updated: 21/11/2024

Vulnerability Summary

Atlassian JIRA 3.12 up to and including 4.1 allows remote authenticated administrators to execute arbitrary code by modifying the (1) attachment (aka attachments), (2) index (aka indexing), or (3) backup path and then uploading a file, as exploited in the wild in April 2010.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

atlassian jira 3.12

atlassian jira 3.12.1

atlassian jira 3.12.2

atlassian jira 3.12.3

atlassian jira 3.13

atlassian jira 3.13.1

atlassian jira 3.13.2

atlassian jira 3.13.3

atlassian jira 3.13.4

atlassian jira 3.13.5

atlassian jira 4.0

atlassian jira 4.0.1

atlassian jira 4.0.2

atlassian jira 4.1