CVE-2021-43948 vulnerability in Atlassian Products
Published on February 15, 2022

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view the names of private objects via an Improper Authorization vulnerability in the "Move objects" feature. The affected versions are before version 4.21.0.

NVD

Products Associated with CVE-2021-43948

stack.watch emails you whenever new vulnerabilities are published in Atlassian Data Center or Atlassian Jira. Just hit a watch button to start following.

Atlassian Data Center

Atlassian Jira

Affected Versions

Atlassian Jira Service Management Server:

Version unspecified and below 4.21.0 is affected.

Atlassian Jira Service Management Data Center:

Version unspecified and below 4.21.0 is affected.

Exploit Probability

EPSS

0.37%

Percentile

58.88%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-43948 vulnerability in Atlassian ProductsPublished on February 15, 2022

Products Associated with CVE-2021-43948

Affected Versions

Exploit Probability

CVE-2021-43948 vulnerability in Atlassian Products
Published on February 15, 2022