CNNVD-202510-3183 Information

Oct 22, 2025 cve

CNNVD ID

CNNVD-202510-3183

CVE-2025-22167

CNNVD Published: 2025-10-22

Description (Chinese)

Atlassian Jira Software Data Center and Server是澳大利亚Atlassian公司的一款内部部署的项目管理与敏捷开发平台。 Atlassian Jira Software Data Center and Server 9.12.0版本、10.3.0版本和11.0.0版本存在安全漏洞，该漏洞源于路径遍历，可能导致任意文件写入。

Description (English)

Atlas sian Jira Software Data Center and Server is an internally deployed project management and agility development platform for the Australian company Atlassian. Atlas sian Jira Software Data Center and Server 9.12.0, 10.3.0 and 11.0.0 have a security loophole, which originates from a routing that may lead to any document being written.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Atlassian

Published

2025-10-22

Last Modified

2026-02-24

References

https://jira.atlassian.com/browse/JSWSERVER-26552 https://confluence.atlassian.com/pages/viewpage.action?pageId=1652920034 https://access.redhat.com/security/cve/cve-2025-22167 https://vigilance.fr/vulnerability/Atlassian-Jira-DC-Server-directory-traversal-dated-22-10-2025-48550

Patch

https://confluence.atlassian.com/pages/viewpage.action?pageId=1652920034

Share on: