Is there information on the mitigation steps for Jira/Confluence cloud?

Assassan
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
December 13, 2021

We have both Cloud and on-prem Jira/bitbucket/bamboo/octapus.

We have seen the advisory post link below, but it doesn't mention cloud. Are there any injection vulnerabilities there?

https://community.atlassian.com/t5/Jira-articles/CVE-2019-11581-Critical-Security-Advisory-for-Jira-Server-and/ba-p/1128241

2 answers

0 votes
Daniel Eads
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
December 13, 2021

Hi all,

Daniel with Atlassian Support here to let you know our security team has finished its investigation. We have an official response statement here on Community, which you can access at this link.

More information can be found on our advisory page, as well as the previously-published FAQ:

Thanks,
Daniel Eads | Atlassian Support

Daniel Eads
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
December 13, 2021

P.S. based on the time your question was posted, I'm assuming you mean the recently-announced log4j vulnerability rather than the linked CVE from 2019

0 votes
Howard Nedd
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
December 13, 2021

Hi,

 

  Jira/Confluence Cloud is not affected.

 

Regards,
Howard

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events