heise PlusAbo
Anzeige

Atlassian Jira Data Center: Attackers Can Intercept Data

Security updates resolve IT security issues in Atlassian Confluence Data Center and Jira Data Center.

listen Print view
A symbolic update bar fills up.

(Image: AFANASEV IVAN/Shutterstock.com)

1 min. read
Security
By

Admins of Atlassian software should update Confluence Data Center and Jira Data Center to the latest version promptly. If this is not done, attackers can exploit two security vulnerabilities to attack systems.

Protect Systems Now

One vulnerability (CVE-2025-22167 "high") affects Jira Software Data Center and Jira Software Server. At this point, attackers can gain unauthorized access to data through a path traversal attack. The developers assure in a warning message that they have closed the gap in versions 9.12.28, 10.3.12, and 11.1.0.

The vulnerability (CVE-2025-22166 "high") in Confluence Data Center serves according to a contribution as a starting point for DoS attacks. The versions 8.5.25, 9.2.7, and 10.0.2 provide a remedy at this point.

Videos by heise

Even though there are no reports of ongoing attacks yet, admins should not delay installing the security updates.

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten