Affected versions of Atlassian Jira Server and Data Center used versions of Apache Tomcat that were vulnerable to [CVE-2021-25329|https://nvd.nist.gov/vuln/detail/CVE-2021-25329] and [CVE-2021-25122|https://nvd.nist.gov/vuln/detail/CVE-2021-25122].

The affected versions are before version 8.17.0.

Affected versions:

version < 8.17.0

Fixed versions:

8.17.0

openvas 21

atlassian 9

nessus 36

ibm 8

photon 8

debian 2

kaspersky 2

osv 11

tomcat 4

redos 9

suse 1

redhat 4

mageia 1

cve 2

f5 2

veracode 3

cisa 1

nvd 2

cvelist 2

github 2

cgr 2

debiancve 2

redhatcve 2

ubuntucve 2

prion 2

attackerkb 1

gentoo 1

amazon 2

ubuntu 3

symantec 1

rosalinux 2

oracle 4

openvas

Debian: Security Advisory (DSA-4891-1)

2021-04-15 00:00:00

SUSE: Security Advisory (SUSE-SU-2021:1008-1)

2021-06-09 00:00:00

openSUSE: Security Advisory for tomcat (openSUSE-SU-2021:0496-1)

2021-04-16 00:00:00

atlassian

Tomcat PersistenceManager vulnerabilities - CVE-2021-25329 and CVE-2021-25122

2021-03-11 19:39:59

Tomcat PersistenceManager vulnerabilities - CVE-2021-25329 and CVE-2021-25122

2021-03-11 19:39:59

Jira Server and Data Center affected by Tomcat CVE-2021-25329 and CVE-2021-25122

2021-04-22 21:11:00

nessus

Photon OS 1.0: Apache PHSA-2021-1.0-0372

2021-03-22 00:00:00

Debian DSA-4891-1 : tomcat9 - security update

2021-04-15 00:00:00

Photon OS 3.0: Apache PHSA-2021-3.0-0208

2021-03-22 00:00:00

ibm

Security Bulletin: App Connect Professional is affected by Apache Tomcat vulnerabilities.

2021-04-06 14:10:39

Security Bulletin: IBM UrbanCode Build is affected by CVE-2021-25122 and CVE-2021-25329

2022-02-09 16:30:32

Security Bulletin: Open Source Apache Tomcat vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (CVE-2021-25122, CVE-2021-25329)

2021-04-13 10:45:28

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0372

2021-03-18 00:00:00

Important Photon OS Security Update - PHSA-2021-0208

2021-03-17 00:00:00

Important Photon OS Security Update - PHSA-2021-0372

2021-03-18 00:00:00

debian

[SECURITY] [DSA 4891-1] tomcat9 security update

2021-04-13 20:47:05

[SECURITY] [DLA 2596-1] tomcat8 security update

2021-03-16 05:29:03

kaspersky

KLA12104 Multiple vulnerabilities in Apache Tomcat

2021-02-02 00:00:00

KLA12105 ACE vulnerability in Apache Tomcat

2021-02-05 00:00:00

osv

tomcat9 - security update

2021-04-13 00:00:00

tomcat8 - security update

2021-03-15 00:00:00

BIT-tomcat-2021-25122

2024-03-06 11:10:22

tomcat

Fixed in Apache Tomcat 9.0.43

2021-02-02 00:00:00

Fixed in Apache Tomcat 10.0.2

2021-02-02 00:00:00

Fixed in Apache Tomcat 8.5.63

2021-02-02 00:00:00

redos

ROS-2-622

2021-09-08 00:00:00

ROS-2-811

2021-09-08 00:00:00

ROS-2-588

2021-09-08 00:00:00

suse

Security update for tomcat (important)

2021-04-02 00:00:00

redhat

(RHSA-2021:2562) Moderate: Red Hat JBoss Web Server 5.5.0 security release

2021-06-29 08:35:57

(RHSA-2021:2561) Moderate: Red Hat JBoss Web Server 5.5.0 Security release

2021-06-29 08:34:12

(RHSA-2021:3425) Important: Red Hat support for Spring Boot 2.3.10 security update

2021-09-09 06:15:29

mageia

Updated tomcat packages fix security vulnerabilities

2021-07-20 13:46:47

cve

CVE-2021-25122

2021-03-01 12:15:13

CVE-2021-25329

2021-03-01 12:15:14

K00174195 : Apache Tomcat vulnerability CVE-2021-25122

2021-03-16 00:00:00

K73648110 : Apache Tomcat vulnerability CVE-2021-25329

2021-03-16 00:00:00

veracode

Information Disclosure

2021-03-02 03:14:43

Remote Code Execution (RCE)

2021-03-02 07:51:38

Remote Code Execution

2021-03-03 06:05:38

cisa

Apache Releases Security Advisory for Tomcat

2021-03-02 00:00:00

nvd

CVE-2021-25122

2021-03-01 12:15:13

CVE-2021-25329

2021-03-01 12:15:14

cvelist

CVE-2021-25122 Apache Tomcat h2c request mix-up

2021-03-01 12:00:20

CVE-2021-25329 Incomplete fix for CVE-2020-9484

2021-03-01 12:00:20

github

Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat

2021-06-16 17:45:29

Potential remote code execution in Apache Tomcat

2021-03-19 20:11:13

cgr

CVE-2021-25122 vulnerabilities

2024-05-19 03:07:16

CVE-2021-25329 vulnerabilities

2024-05-19 03:07:16

debiancve

CVE-2021-25122

2021-03-01 12:15:13

CVE-2021-25329

2021-03-01 12:15:14

redhatcve

CVE-2021-25122

2021-03-02 10:32:54

CVE-2021-25329

2021-03-02 12:32:45

ubuntucve

CVE-2021-25122

2021-03-01 00:00:00

CVE-2021-25329

2021-03-01 00:00:00

prion

Cross site request forgery (csrf)

2021-03-01 12:15:00

Design/Logic Flaw

2021-03-01 12:15:00

attackerkb

CVE-2020-9484 — PersistentManager Java deserialization vulnerability

2020-05-20 00:00:00

gentoo

Apache Tomcat: Multiple Vulnerabilities

2022-08-21 00:00:00

amazon

Important: tomcat8

2021-03-23 23:07:00

Low: tomcat7

2021-04-07 00:18:00

ubuntu

Tomcat vulnerabilities

2022-03-31 00:00:00

Tomcat vulnerabilities

2024-07-23 00:00:00

Tomcat vulnerabilities

2024-08-01 00:00:00

symantec

Apache Tomcat Vulnerabilities May 2020 - Mar 2021

2021-03-16 19:59:07

rosalinux

Advisory ROSA-SA-2023-2258

2023-10-21 16:49:43

Advisory ROSA-SA-2021-1988

2021-07-02 18:17:52

oracle

Oracle Critical Patch Update Advisory - October 2022

2022-10-18 00:00:00

Oracle Critical Patch Update Advisory - July 2021

2021-07-20 00:00:00

Oracle Critical Patch Update Advisory - January 2022

2022-01-18 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.002

Percentile

60.0%

JSON

Related for ATLASSIAN:JRASERVER-72346