A critical vulnerability in Jira Service Management (Server and Data Center) could allow an unauthenticated attacker to impersonate other users and gain remote access. Read how to defend yourself.
The time has come. It`s February and the prophecy is coming true… in 2 weeks the possibility to buy applications for Jira Server on the Atlassian Marketplace ends. What else do you need to know?
Hi! Atlassian shared lectures from the Work Life conference. You can learn from them, among others, how to better organize your and your team’s work, take a look: https://events.atlassian.com/worklife/on-demand-library. Cheers!
There is known exploitation of this vulnerability in Confluence Server version 7.18.0. Subsequent testing indicates that multiple versions of Confluence Server and Data Center, including version 7.4.0 and newer, are vulnerable. There are currently no fixed versions of Confluence Server and Data Center available. Estimated time to deploy the fix is 24 hours. Until then Atlassian recommends to restrict Confluence Server and Data Center instances from the internet or disable them.
Will Jira Data Center end up like Jira Server? Perhaps this question would not have appear in the user`s minds if it wasn`t for the Atlassian Community. After the last two-day conference Team’22, where there was no mention of Data Center further development, Rodney Nissen (aka The Jira Guy) wrote a great critique, with even better title: “Atlassian, we need to talk about Data Center”. See what happened next.