CVE-2021-43943 is a vulnerability in Atlassian Jira
Published on February 24, 2022

Affected versions of Atlassian Jira Service Management Server and Data Center allow attackers with administrator privileges to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the "Object Schema" field of /secure/admin/InsightDefaultCustomFieldConfig.jspa. The affected versions are before version 4.21.0.

NVD

Products Associated with CVE-2021-43943

Want to know whenever a new CVE is published for Atlassian Jira? stack.watch will email you.

Atlassian Jira

Affected Versions

Atlassian Jira Service Management Server:

Version unspecified and below 4.21.0 is affected.

Atlassian Jira Service Management Data Center:

Version unspecified and below 4.21.0 is affected.

Exploit Probability

EPSS

0.31%

Percentile

54.07%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-43943 is a vulnerability in Atlassian JiraPublished on February 24, 2022

Products Associated with CVE-2021-43943

Affected Versions

Exploit Probability

CVE-2021-43943 is a vulnerability in Atlassian Jira
Published on February 24, 2022