Atlassian Universal Plugin Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Atlassian Universal Plugin Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2018-20233 — CVSS 6.5 (medium): The Upload add-on resource in Atlassian Universal Plugin Manager before version 2.22.14 allows remote attackers who have system…
CVE-2018-5229 — CVSS 5.4 (medium): The NotificationRepresentationFactoryImpl class in Atlassian Universal Plugin Manager before version 2.22.9 allows remote attackers to…
CVE-2019-14999 — CVSS 4.3 (medium): The Uninstall REST endpoint in Atlassian Universal Plugin Manager before version 2.22.19, from version 3.0.0 before version 3.0.3 and from…