Atlassian Jira Software Server CVE-2021-39128 Code Injection Vulnerability

description-logoDescription

Affected versions of Atlassian Jira Server or Data Center using the Jira Service Management addon allow remote attackers with JIRA Administrators access to execute arbitrary Java code via a server-side template injection vulnerability in the Email Template feature. The affected versions of Jira Server or Data Center are before version 8.13.12, and from version 8.14.0 before 8.19.1.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2021-39128