Jira is affected by CVE-2022-42890 &

XMLWordPrintable

    • 9
    • 2
    • Severity 3 - Minor
    • 5

      This affects the Batik library from v1.0 - v1.15 Jira 9.0.0 uses Batik v1.14.

      More information on vulnerability at:
      Information Exposure (CVE-2022-41704)
      Remote Code Execution (RCE) (CVE-2022-42890)

      Fix:
      Upgrade org.apache.xmlgraphics:batik-script to version 1.16 or higher.

              Assignee:
              Unassigned
              Reporter:
              Binoy Nicholas
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: