Articles
Security Vulnerability – Unauthorized Creation of Connections
Review the security vulnerability regarding unauthorized creation of connections in Exalate. Find the CVSS rating, affected versions, and mandatory upgrade steps.
Security Vulnerability — You can Access Restricted Project Data with the Connect Operation
Learn about the security vulnerability regarding anonymous access to the Exalate Console on Jira Cloud and Salesforce. Review the fix and mandatory upgrade steps.
Security Vulnerability – Anonymous Access to Exalate for Jira Cloud and Exalate for Salesforce
Learn about the security vulnerability regarding anonymous access to the Exalate Console on Jira Cloud and Salesforce. Review the fix and mandatory upgrade steps.
Exalate Response to the Recent Vulnerability CVE-2022-22965
Read Exalate's official response to the Spring4Shell vulnerability (CVE-2022-22965). Learn about the impact on Exalate nodes and the security measures taken to protect user data.
Exalate Response to Log4j Vulnerability - CVE-2021-44228
Review Exalate's official stance on the Log4j vulnerability. Learn why most Exalate products are not affected and find specific advice for Jira On-Premise users.
Security Vulnerability: Low-Risk Vulnerability in JWT Transmission Through Headers
Learn about the March 2024 low-risk security vulnerability involving JWT transmission through headers. Understand the limited impact and how Exalate’s security layers mitigate the risk.
System Environment Vulnerability in Jira DC (Pre-Version 10)
Review the 2024 security report on low-risk JWT transmission vulnerabilities in Exalate. Understand the limited impact and proactive security measures in place.