CVE-2021-26086 — Actively Exploited: Jira Server and Data Center (Atlassian)
Atlassian Jira Server and Data Center contain a path traversal vulnerability that allows a remote attacker to read particular files in the /WEB-INF/web.xml endpoint.
| CVE ID | CVE-2021-26086 |
|---|---|
| Vendor | Atlassian |
| Product | Jira Server and Data Center |
| Vulnerability name | Atlassian Jira Server and Data Center Path Traversal Vulnerability |
| Date added | 2024-11-12 |
| Remediation due | 2024-12-03 |
| Known ransomware use | Unknown |
| Required action | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| Description | Atlassian Jira Server and Data Center contain a path traversal vulnerability that allows a remote attacker to read particular files in the /WEB-INF/web.xml endpoint. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →