{"containers":{"cna":{"affected":[{"product":"Bamboo Server","vendor":"Atlassian","versions":[{"lessThan":"8.0.9","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.1.0","versionType":"custom"},{"lessThan":"8.1.8","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.2.0","versionType":"custom"},{"lessThan":"8.2.4","status":"affected","version":"unspecified","versionType":"custom"}]},{"product":"Bamboo Data Center","vendor":"Atlassian","versions":[{"lessThan":"8.0.9","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.1.0","versionType":"custom"},{"lessThan":"8.1.8","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.2.0","versionType":"custom"},{"lessThan":"8.2.4","status":"affected","version":"unspecified","versionType":"custom"}]},{"product":"Bitbucket Server","vendor":"Atlassian","versions":[{"lessThan":"7.6.16","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.7.0","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.16.0","versionType":"custom"},{"lessThan":"7.17.8","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.18.0","versionType":"custom"},{"lessThan":"7.19.5","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.20.0","versionType":"custom"},{"lessThan":"7.20.2","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.21.0","versionType":"custom"},{"lessThan":"7.21.2","status":"affected","version":"unspecified","versionType":"custom"},{"status":"affected","version":"8.0.0"},{"status":"affected","version":"8.1.0"}]},{"product":"Bitbucket Data Center","vendor":"Atlassian","versions":[{"lessThan":"7.6.16","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.7.0","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.16.0","versionType":"custom"},{"lessThan":"7.17.8","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.18.0","versionType":"custom"},{"lessThan":"7.19.5","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.20.0","versionType":"custom"},{"lessThan":"7.20.2","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.21.0","versionType":"custom"},{"lessThan":"7.21.2","status":"affected","version":"unspecified","versionType":"custom"},{"status":"affected","version":"8.0.0"},{"status":"affected","version":"8.1.0"}]},{"product":"Confluence Server","vendor":"Atlassian","versions":[{"lessThan":"7.4.17","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.5.0","versionType":"custom"},{"lessThan":"7.13.7","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.14.0","versionType":"custom"},{"lessThan":"7.14.3","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.15.0","versionType":"custom"},{"lessThan":"7.15.2","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.16.0","versionType":"custom"},{"lessThan":"7.16.4","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.17.0","versionType":"custom"},{"lessThan":"7.17.4","status":"affected","version":"unspecified","versionType":"custom"},{"status":"affected","version":"7.18.0"}]},{"product":"Confluence Data Center","vendor":"Atlassian","versions":[{"lessThan":"7.4.17","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.5.0","versionType":"custom"},{"lessThan":"7.13.7","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.14.0","versionType":"custom"},{"lessThan":"7.14.3","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.15.0","versionType":"custom"},{"lessThan":"7.15.2","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.16.0","versionType":"custom"},{"lessThan":"7.16.4","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"7.17.0","versionType":"custom"},{"lessThan":"7.17.4","status":"affected","version":"unspecified","versionType":"custom"},{"status":"affected","version":"7.18.0"}]},{"product":"Crowd Server","vendor":"Atlassian","versions":[{"lessThan":"4.3.8","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"4.4.0","versionType":"custom"},{"lessThan":"4.4.2","status":"affected","version":"unspecified","versionType":"custom"},{"status":"affected","version":"5.0.0"}]},{"product":"Crowd Data Center","vendor":"Atlassian","versions":[{"lessThan":"4.3.8","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"4.4.0","versionType":"custom"},{"lessThan":"4.4.2","status":"affected","version":"unspecified","versionType":"custom"},{"status":"affected","version":"5.0.0"}]},{"product":"Crucible","vendor":"Atlassian","versions":[{"lessThan":"4.8.10","status":"affected","version":"unspecified","versionType":"custom"}]},{"product":"Fisheye","vendor":"Atlassian","versions":[{"lessThan":"4.8.10","status":"affected","version":"unspecified","versionType":"custom"}]},{"product":"Jira Core Server","vendor":"Atlassian","versions":[{"lessThan":"8.13.22","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.14.0","versionType":"custom"},{"lessThan":"8.20.10","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.21.0","versionType":"custom"},{"lessThan":"8.22.4","status":"affected","version":"unspecified","versionType":"custom"}]},{"product":"Jira Software Server","vendor":"Atlassian","versions":[{"lessThan":"8.13.22","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.14.0","versionType":"custom"},{"lessThan":"8.20.10","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.21.0","versionType":"custom"},{"lessThan":"8.22.4","status":"affected","version":"unspecified","versionType":"custom"}]},{"product":"Jira Software Data Center","vendor":"Atlassian","versions":[{"lessThan":"8.13.22","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.14.0","versionType":"custom"},{"lessThan":"8.20.10","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"8.21.0","versionType":"custom"},{"lessThan":"8.22.4","status":"affected","version":"unspecified","versionType":"custom"}]},{"product":"Jira Service Management Server","vendor":"Atlassian","versions":[{"lessThan":"4.13.22","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"4.14.0","versionType":"custom"},{"lessThan":"4.20.10","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"4.21.0","versionType":"custom"},{"lessThan":"4.22.4","status":"affected","version":"unspecified","versionType":"custom"}]},{"product":"Jira Service Management Data Center","vendor":"Atlassian","versions":[{"lessThan":"4.13.22","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"4.14.0","versionType":"custom"},{"lessThan":"4.20.10","status":"affected","version":"unspecified","versionType":"custom"},{"lessThan":"unspecified","status":"affected","version":"4.21.0","versionType":"custom"},{"lessThan":"4.22.4","status":"affected","version":"unspecified","versionType":"custom"}]}],"datePublic":"2022-07-20T00:00:00.000Z","descriptions":[{"lang":"en","value":"A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to cause additional Servlet Filters to be invoked when the application processes requests or responses. Atlassian has confirmed and fixed the only known security issue associated with this vulnerability: Cross-origin resource sharing (CORS) bypass. Sending a specially crafted HTTP request can invoke the Servlet Filter used to respond to CORS requests, resulting in a CORS bypass. An attacker that can trick a user into requesting a malicious URL can access the vulnerable application with the victim’s permissions. Atlassian Bamboo versions are affected before 8.0.9, from 8.1.0 before 8.1.8, and from 8.2.0 before 8.2.4. Atlassian Bitbucket versions are affected before 7.6.16, from 7.7.0 before 7.17.8, from 7.18.0 before 7.19.5, from 7.20.0 before 7.20.2, from 7.21.0 before 7.21.2, and versions 8.0.0 and 8.1.0. Atlassian Confluence versions are affected before 7.4.17, from 7.5.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and version 7.21.0. Atlassian Crowd versions are affected before 4.3.8, from 4.4.0 before 4.4.2, and version 5.0.0. Atlassian Fisheye and Crucible versions before 4.8.10 are affected. Atlassian Jira versions are affected before 8.13.22, from 8.14.0 before 8.20.10, and from 8.21.0 before 8.22.4. Atlassian Jira Service Management versions are affected before 4.13.22, from 4.14.0 before 4.20.10, and from 4.21.0 before 4.22.4."}],"problemTypes":[{"descriptions":[{"cweId":"CWE-180","description":"Incorrect Behavior Order: Validate Before Canonicalize (CWE-180)","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2022-07-20T17:25:23.000Z","orgId":"f08a6ab8-ed46-4c22-8884-d911ccfe3c66","shortName":"atlassian"},"references":[{"tags":["x_refsource_MISC"],"url":"https://jira.atlassian.com/browse/BAM-21795"},{"tags":["x_refsource_MISC"],"url":"https://jira.atlassian.com/browse/BSERV-13370"},{"tags":["x_refsource_MISC"],"url":"https://jira.atlassian.com/browse/CONFSERVER-79476"},{"tags":["x_refsource_MISC"],"url":"https://jira.atlassian.com/browse/CWD-5815"},{"tags":["x_refsource_MISC"],"url":"https://jira.atlassian.com/browse/FE-7410"},{"tags":["x_refsource_MISC"],"url":"https://jira.atlassian.com/browse/CRUC-8541"},{"tags":["x_refsource_MISC"],"url":"https://jira.atlassian.com/browse/JRASERVER-73897"},{"tags":["x_refsource_MISC"],"url":"https://jira.atlassian.com/browse/JSDSERVER-11863"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"security@atlassian.com","DATE_PUBLIC":"2022-07-20T00:00:00","ID":"CVE-2022-26137","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Bamboo Server","version":{"version_data":[{"version_affected":"<","version_value":"8.0.9"},{"version_affected":">=","version_value":"8.1.0"},{"version_affected":"<","version_value":"8.1.8"},{"version_affected":">=","version_value":"8.2.0"},{"version_affected":"<","version_value":"8.2.4"}]}},{"product_name":"Bamboo Data Center","version":{"version_data":[{"version_affected":"<","version_value":"8.0.9"},{"version_affected":">=","version_value":"8.1.0"},{"version_affected":"<","version_value":"8.1.8"},{"version_affected":">=","version_value":"8.2.0"},{"version_affected":"<","version_value":"8.2.4"}]}},{"product_name":"Bitbucket Server","version":{"version_data":[{"version_affected":"<","version_value":"7.6.16"},{"version_affected":">=","version_value":"7.7.0"},{"version_affected":">=","version_value":"7.16.0"},{"version_affected":"<","version_value":"7.17.8"},{"version_affected":">=","version_value":"7.18.0"},{"version_affected":"<","version_value":"7.19.5"},{"version_affected":">=","version_value":"7.20.0"},{"version_affected":"<","version_value":"7.20.2"},{"version_affected":">=","version_value":"7.21.0"},{"version_affected":"<","version_value":"7.21.2"},{"version_affected":"=","version_value":"8.0.0"},{"version_affected":"=","version_value":"8.1.0"}]}},{"product_name":"Bitbucket Data Center","version":{"version_data":[{"version_affected":"<","version_value":"7.6.16"},{"version_affected":">=","version_value":"7.7.0"},{"version_affected":">=","version_value":"7.16.0"},{"version_affected":"<","version_value":"7.17.8"},{"version_affected":">=","version_value":"7.18.0"},{"version_affected":"<","version_value":"7.19.5"},{"version_affected":">=","version_value":"7.20.0"},{"version_affected":"<","version_value":"7.20.2"},{"version_affected":">=","version_value":"7.21.0"},{"version_affected":"<","version_value":"7.21.2"},{"version_affected":"=","version_value":"8.0.0"},{"version_affected":"=","version_value":"8.1.0"}]}},{"product_name":"Confluence Server","version":{"version_data":[{"version_affected":"<","version_value":"7.4.17"},{"version_affected":">=","version_value":"7.5.0"},{"version_affected":"<","version_value":"7.13.7"},{"version_affected":">=","version_value":"7.14.0"},{"version_affected":"<","version_value":"7.14.3"},{"version_affected":">=","version_value":"7.15.0"},{"version_affected":"<","version_value":"7.15.2"},{"version_affected":">=","version_value":"7.16.0"},{"version_affected":"<","version_value":"7.16.4"},{"version_affected":">=","version_value":"7.17.0"},{"version_affected":"<","version_value":"7.17.4"},{"version_affected":"=","version_value":"7.18.0"}]}},{"product_name":"Confluence Data Center","version":{"version_data":[{"version_affected":"<","version_value":"7.4.17"},{"version_affected":">=","version_value":"7.5.0"},{"version_affected":"<","version_value":"7.13.7"},{"version_affected":">=","version_value":"7.14.0"},{"version_affected":"<","version_value":"7.14.3"},{"version_affected":">=","version_value":"7.15.0"},{"version_affected":"<","version_value":"7.15.2"},{"version_affected":">=","version_value":"7.16.0"},{"version_affected":"<","version_value":"7.16.4"},{"version_affected":">=","version_value":"7.17.0"},{"version_affected":"<","version_value":"7.17.4"},{"version_affected":"=","version_value":"7.18.0"}]}},{"product_name":"Crowd Server","version":{"version_data":[{"version_affected":"<","version_value":"4.3.8"},{"version_affected":">=","version_value":"4.4.0"},{"version_affected":"<","version_value":"4.4.2"},{"version_affected":"=","version_value":"5.0.0"}]}},{"product_name":"Crowd Data Center","version":{"version_data":[{"version_affected":"<","version_value":"4.3.8"},{"version_affected":">=","version_value":"4.4.0"},{"version_affected":"<","version_value":"4.4.2"},{"version_affected":"=","version_value":"5.0.0"}]}},{"product_name":"Crucible","version":{"version_data":[{"version_affected":"<","version_value":"4.8.10"}]}},{"product_name":"Fisheye","version":{"version_data":[{"version_affected":"<","version_value":"4.8.10"}]}},{"product_name":"Jira Core Server","version":{"version_data":[{"version_affected":"<","version_value":"8.13.22"},{"version_affected":">=","version_value":"8.14.0"},{"version_affected":"<","version_value":"8.20.10"},{"version_affected":">=","version_value":"8.21.0"},{"version_affected":"<","version_value":"8.22.4"}]}},{"product_name":"Jira Software Server","version":{"version_data":[{"version_affected":"<","version_value":"8.13.22"},{"version_affected":">=","version_value":"8.14.0"},{"version_affected":"<","version_value":"8.20.10"},{"version_affected":">=","version_value":"8.21.0"},{"version_affected":"<","version_value":"8.22.4"}]}},{"product_name":"Jira Software Data Center","version":{"version_data":[{"version_affected":"<","version_value":"8.13.22"},{"version_affected":">=","version_value":"8.14.0"},{"version_affected":"<","version_value":"8.20.10"},{"version_affected":">=","version_value":"8.21.0"},{"version_affected":"<","version_value":"8.22.4"}]}},{"product_name":"Jira Service Management Server","version":{"version_data":[{"version_affected":"<","version_value":"4.13.22"},{"version_affected":">=","version_value":"4.14.0"},{"version_affected":"<","version_value":"4.20.10"},{"version_affected":">=","version_value":"4.21.0"},{"version_affected":"<","version_value":"4.22.4"}]}},{"product_name":"Jira Service Management Data Center","version":{"version_data":[{"version_affected":"<","version_value":"4.13.22"},{"version_affected":">=","version_value":"4.14.0"},{"version_affected":"<","version_value":"4.20.10"},{"version_affected":">=","version_value":"4.21.0"},{"version_affected":"<","version_value":"4.22.4"}]}}]},"vendor_name":"Atlassian"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to cause additional Servlet Filters to be invoked when the application processes requests or responses. Atlassian has confirmed and fixed the only known security issue associated with this vulnerability: Cross-origin resource sharing (CORS) bypass. Sending a specially crafted HTTP request can invoke the Servlet Filter used to respond to CORS requests, resulting in a CORS bypass. An attacker that can trick a user into requesting a malicious URL can access the vulnerable application with the victim’s permissions. Atlassian Bamboo versions are affected before 8.0.9, from 8.1.0 before 8.1.8, and from 8.2.0 before 8.2.4. Atlassian Bitbucket versions are affected before 7.6.16, from 7.7.0 before 7.17.8, from 7.18.0 before 7.19.5, from 7.20.0 before 7.20.2, from 7.21.0 before 7.21.2, and versions 8.0.0 and 8.1.0. Atlassian Confluence versions are affected before 7.4.17, from 7.5.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and version 7.21.0. Atlassian Crowd versions are affected before 4.3.8, from 4.4.0 before 4.4.2, and version 5.0.0. Atlassian Fisheye and Crucible versions before 4.8.10 are affected. Atlassian Jira versions are affected before 8.13.22, from 8.14.0 before 8.20.10, and from 8.21.0 before 8.22.4. Atlassian Jira Service Management versions are affected before 4.13.22, from 4.14.0 before 4.20.10, and from 4.21.0 before 4.22.4."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Incorrect Behavior Order: Validate Before Canonicalize (CWE-180)"}]}]},"references":{"reference_data":[{"name":"https://jira.atlassian.com/browse/BAM-21795","refsource":"MISC","url":"https://jira.atlassian.com/browse/BAM-21795"},{"name":"https://jira.atlassian.com/browse/BSERV-13370","refsource":"MISC","url":"https://jira.atlassian.com/browse/BSERV-13370"},{"name":"https://jira.atlassian.com/browse/CONFSERVER-79476","refsource":"MISC","url":"https://jira.atlassian.com/browse/CONFSERVER-79476"},{"name":"https://jira.atlassian.com/browse/CWD-5815","refsource":"MISC","url":"https://jira.atlassian.com/browse/CWD-5815"},{"name":"https://jira.atlassian.com/browse/FE-7410","refsource":"MISC","url":"https://jira.atlassian.com/browse/FE-7410"},{"name":"https://jira.atlassian.com/browse/CRUC-8541","refsource":"MISC","url":"https://jira.atlassian.com/browse/CRUC-8541"},{"name":"https://jira.atlassian.com/browse/JRASERVER-73897","refsource":"MISC","url":"https://jira.atlassian.com/browse/JRASERVER-73897"},{"name":"https://jira.atlassian.com/browse/JSDSERVER-11863","refsource":"MISC","url":"https://jira.atlassian.com/browse/JSDSERVER-11863"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T04:56:37.614Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://jira.atlassian.com/browse/BAM-21795"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://jira.atlassian.com/browse/BSERV-13370"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://jira.atlassian.com/browse/CONFSERVER-79476"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://jira.atlassian.com/browse/CWD-5815"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://jira.atlassian.com/browse/FE-7410"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://jira.atlassian.com/browse/CRUC-8541"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://jira.atlassian.com/browse/JRASERVER-73897"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://jira.atlassian.com/browse/JSDSERVER-11863"}]},{"affected":[{"vendor":"atlassian","product":"bamboo","cpes":["cpe:2.3:a:atlassian:bamboo:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"7.2.0","status":"affected","lessThan":"7.2.10","versionType":"custom"},{"version":"8.0.0","status":"affected","lessThan":"8.0.9","versionType":"custom"},{"version":"8.1.0","status":"affected","lessThan":"8.1.8","versionType":"custom"},{"version":"8.2.0","status":"affected","lessThan":"8.2.4","versionType":"custom"}]},{"vendor":"atlassian","product":"bitbucket","cpes":["cpe:2.3:a:atlassian:bitbucket:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"affected","lessThan":"7.6.16","versionType":"custom"},{"version":"7.7.0","status":"affected","lessThan":"7.17.8","versionType":"custom"},{"version":"7.18.0","status":"affected","lessThan":"7.19.5","versionType":"custom"},{"version":"7.20.1","status":"affected","lessThan":"7.20.2","versionType":"custom"},{"version":"7.21.0","status":"affected","lessThan":"7.21.2","versionType":"custom"}]},{"vendor":"atlassian","product":"bitbucket","cpes":["cpe:2.3:a:atlassian:bitbucket:8.0.0:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"8.0.0","status":"affected"}]},{"vendor":"atlassian","product":"bitbucket","cpes":["cpe:2.3:a:atlassian:bitbucket:8.1.0:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"8.1.0","status":"affected"}]},{"vendor":"atlassian","product":"confluence_data_center","cpes":["cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"affected","lessThan":"7.4.17","versionType":"custom"},{"version":"7.5.0","status":"affected","lessThan":"7.13.7","versionType":"custom"},{"version":"7.14.0","status":"affected","lessThan":"7.14.3","versionType":"custom"},{"version":"7.15.0","status":"affected","lessThan":"7.15.2","versionType":"custom"},{"version":"7.16.0","status":"affected","lessThan":"7.16.4","versionType":"custom"},{"version":"7.17.0","status":"affected","lessThan":"7.17.4","versionType":"custom"}]},{"vendor":"atlassian","product":"confluence_data_center","cpes":["cpe:2.3:a:atlassian:confluence_data_center:7.18.0:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"7.18.0","status":"affected"}]},{"vendor":"atlassian","product":"confluence_server","cpes":["cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"affected","lessThan":"7.4.17","versionType":"custom"},{"version":"7.5.0","status":"affected","lessThan":"7.13.7","versionType":"custom"},{"version":"7.14.0","status":"affected","lessThan":"7.14.3","versionType":"custom"},{"version":"7.15.0","status":"affected","lessThan":"7.15.2","versionType":"custom"},{"version":"7.16.0","status":"affected","lessThan":"7.16.4","versionType":"custom"},{"version":"7.17.0","status":"affected","lessThan":"7.17.4","versionType":"custom"}]},{"vendor":"atlassian","product":"confluence_server","cpes":["cpe:2.3:a:atlassian:confluence_server:7.18.0:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"7.18.0","status":"affected"}]},{"vendor":"atlassian","product":"crowd","cpes":["cpe:2.3:a:atlassian:crowd:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"affected","lessThan":"4.3.8","versionType":"custom"},{"version":"4.4.0","status":"affected","lessThan":"4.4.2","versionType":"custom"}]},{"vendor":"atlassian","product":"crowd","cpes":["cpe:2.3:a:atlassian:crowd:5.0.0:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"5.0.0","status":"affected"}]},{"vendor":"atlassian","product":"crucible","cpes":["cpe:2.3:a:atlassian:crucible:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"affected","lessThan":"4.8.10","versionType":"custom"}]},{"vendor":"atlassian","product":"fisheye","cpes":["cpe:2.3:a:atlassian:fisheye:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"affected","lessThan":"4.8.10","versionType":"custom"}]},{"vendor":"atlassian","product":"jira_data_center","cpes":["cpe:2.3:a:atlassian:jira_data_center:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"8.13.0","status":"affected","lessThan":"8.13.22","versionType":"custom"},{"version":"8.14.0","status":"affected","lessThan":"8.20.10","versionType":"custom"},{"version":"8.21.0","status":"affected","lessThan":"8.22.4","versionType":"custom"}]},{"vendor":"atlassian","product":"jira_server","cpes":["cpe:2.3:a:atlassian:jira_server:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"8.13.0","status":"affected","lessThan":"8.13.22","versionType":"custom"},{"version":"8.14.0","status":"affected","lessThan":"8.20.10","versionType":"custom"},{"version":"8.21.0","status":"affected","lessThan":"8.22.4","versionType":"custom"}]},{"vendor":"atlassian","product":"jira_service_desk","cpes":["cpe:2.3:a:atlassian:jira_service_desk:-:*:*:*:server:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"affected","lessThan":"4.13.22","versionType":"custom"}]},{"vendor":"atlassian","product":"jira_service_desk","cpes":["cpe:2.3:a:atlassian:jira_service_desk:-:*:*:*:data_center:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"0","status":"affected","lessThan":"4.13.22","versionType":"custom"}]},{"vendor":"atlassian","product":"jira_service_management","cpes":["cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:data_center:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"4.14.0","status":"affected","lessThan":"4.20.10","versionType":"custom"},{"version":"4.21.0","status":"affected","lessThan":"4.22.4","versionType":"custom"}]},{"vendor":"atlassian","product":"jira_service_management","cpes":["cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:server:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"4.14.0","status":"affected","lessThan":"4.20.10","versionType":"custom"},{"version":"4.21.0","status":"affected","lessThan":"4.22.4","versionType":"custom"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":8.8,"attackVector":"NETWORK","baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","integrityImpact":"HIGH","userInteraction":"REQUIRED","attackComplexity":"LOW","availabilityImpact":"HIGH","privilegesRequired":"NONE","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"timestamp":"2024-10-03T16:48:52.174175Z","id":"CVE-2022-26137","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-10-03T17:10:16.886Z"}}]},"cveMetadata":{"assignerOrgId":"f08a6ab8-ed46-4c22-8884-d911ccfe3c66","assignerShortName":"atlassian","cveId":"CVE-2022-26137","datePublished":"2022-07-20T17:25:23.603Z","dateReserved":"2022-02-25T00:00:00.000Z","dateUpdated":"2024-10-03T17:10:16.886Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}