Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Atlassian Subscribe
Filtered by product Activity Streams
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-9513 1 Atlassian 1 Activity Streams 2019-10-09 5.5 MEDIUM 5.4 MEDIUM
Several rest inline action resources of Atlassian Activity Streams before version 6.3.0 allows remote authenticated attackers to watch any Confluence page & receive notifications when comments are added to the watched page, and vote & watch JIRA issues that they do not have access to, although they will not receive notifications for the issue, via missing permission checks.