📦 Crucible

Name: Crucible
Author: Atlassian

by Atlassian

🔍 What is Crucible?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2022-26136

CRITICAL CVSS 9.8 Jul 20, 2022

This vulnerability allows remote unauthenticated attackers to bypass Servlet Filters in multiple Atlassian products, potentially leading to authentication bypass and cross-site scripting attacks. Orga...

CVE-2021-43958

CRITICAL CVSS 9.8 Mar 16, 2022

CVE-2021-43958 allows remote attackers to brute force user credentials in Atlassian Fisheye and Crucible by bypassing CAPTCHA protection on REST endpoints. This affects all users of vulnerable version...

CVE-2024-21683

HIGH CVSS 8.8 May 21, 2024

This is a high-severity remote code execution vulnerability in Confluence Data Center and Server that allows authenticated attackers to execute arbitrary code on affected systems. It affects Confluenc...

CVE-2021-43957

HIGH CVSS 7.5 Mar 16, 2022

This vulnerability allows remote attackers to browse local files on Atlassian Fisheye and Crucible servers via an Insecure Direct Object Reference (IDOR) in the WEB-INF directory. Attackers can bypass...