Atlassian Application Links — known CVE vulnerabilities
Every CVE whose affected-product data names Atlassian Application Links, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2017-18111 — CVSS 8.7 (high): The OAuthHelper in Atlassian Application Links before version 5.0.10, from version 5.1.0 before version 5.1.3, and from version 5.2.0…
CVE-2017-18096 — CVSS 7.2 (high): The OAuth status rest resource in Atlassian Application Links before version 5.2.7, from 5.3.0 before 5.3.4 and from 5.4.0 before 5.4.3…
CVE-2017-16860 — CVSS 6.1 (medium): The invalidRedirectUrl template in Atlassian Application Links before version 5.2.7, from version 5.3.0 before version 5.3.4 and from…
CVE-2018-20239 — CVSS 5.4 (medium): Application Links before version 5.0.11, from version 5.1.0 before 5.2.10, from version 5.3.0 before 5.3.6, from version 5.4.0 before…
CVE-2019-20105 — CVSS 4.9 (medium): The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12…
CVE-2018-5227 — CVSS 4.8 (medium): Various administrative application link resources in Atlassian Application Links before version 5.4.4 allow remote attackers with…
CVE-2019-15011 — CVSS 4.3 (medium): The ListEntityLinksServlet resource in Application Links before version 5.0.12, from version 5.1.0 before version 5.2.11, from version…