Security Advisory

CVE-2021-43947

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-06 01:05:10

Last updated 2024-10-08 14:34:08

Assigner atlassian

State PUBLISHED

Description

Affected versions of Atlassian Jira Server and Data Center allow remote attackers with administrator privileges to execute arbitrary code via a Remote Code Execution (RCE) vulnerability in the Email Templates feature. This issue bypasses the fix of https://jira.atlassian.com/browse/JSDSERVER-8665. The affected versions are before version 8.13.15, and from version 8.14.0 before 8.20.3.

← Browse all CVEs View on cve.org ↗