DevOps Security Alerts

About ReleaseTEAM: DevOps Experts

Multiple Products Security Advisory

Priority: High

CVE-2021-42574 – Unrendered unicode bidirectional override characters in multiple products

Issue Summary A vulnerability has been identified affecting multiple Atlassian products where special characters, known as Unicode bidirectional override characters, are not rendered or displayed in the affected applications. These special characters are typically not displayed by the browser or code editors but can affect the meaning of the source code when it is processed by a compiler or an interpreter.

Affected Products
Bamboo Server and Data Center
Bitbucket Server and Data Center
Confluence Server and Data Center
Crucible
Fisheye
Jira Service Management Server and Data Center (and Insight Asset Management app)
Jira Software Server and Data Center (including Jira Core)

What you need to do
Atlassian recommends that you upgrade to the latest version. For a full description of the latest versions, see the release notes for your product:

Details on upgrading and on the alternative workaround, as well as more info on this issue can be found Here

Contact us on (866) 887-0489 or info@releaseteam.com today to speak to an expert about your next DevOps project.

Let's Talk DevOps!

Call: (866)-887-0489
Email: info@releaseteam.com

Corporate HQ

1499 W. 120th Ave
Suite 110
Westminster, CO 80234
720-887-0489

Massachusetts

1257 Worcester Rd.
Suite 108
Framingham, MA 01701
866-887-0489

Canada

PMB# 604
1-110 Cumberland St.
Toronto, ON M5R 3V5
866-887-0489