Community
Products
Jira
Questions
Outdated Moment.js in Jira Server (CVE-2017-18214, CVE-2016-4055)

Outdated Moment.js in Jira Server (CVE-2017-18214, CVE-2016-4055)

We are getting this vulnerability on jira server version 8.13.22 that is installed in our current environment. May i know the workaround or any other remedies to resolve this vulnerability

1 answer

0 votes

Welcome to the Atlassian Community!

You will need to upgrade Jira to the version recorded in the fix - https://jira.atlassian.com/browse/JRASERVER-73244

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Is that the only solution? there is not workaround for this current version? 8.13.22 is the latest version we are using for 8.13 instance.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Yes, you can't just rip a load of libraries out of a system and replace them with newer ones. You do that in new refactored (and hence tested) systems.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Forums

Product Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Outdated Moment.js in Jira Server (CVE-2017-18214, CVE-2016-4055)

1 answer

Suggest an answer

Was this helpful?

Thanks!

DEPLOYMENT TYPE

PRODUCT PLAN

TAGS

Community showcase

Atlassian Community Events