CVE-2021-26086CISA KEVEPSS p100.0%

CVE-2021-26086Atlassian Jira Server and Data Center Path Traversal Vulnerability

Atlassian / Jira Server and Data Center

Description

Atlassian Jira Server and Data Center contain a path traversal vulnerability that allows a remote attacker to read particular files in the /WEB-INF/web.xml endpoint.

Scoring

EPSS100.00% probability of exploitation · percentile 100.0% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2024-11-12

(incoming)1

TypeTargetConfidenceTier
KEVEntryAtlassian Jira Server and Data Center Path Traversal Vulnerabilitykev-cve-2021-260860%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Atlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability
CVE
Atlassian Jira Server and Data Center Server-Side Template Injection Vulnerability
CVE
Atlassian Confluence Server and Data Center Path Traversal Vulnerability
CVE
Atlassian Confluence Server and Data Center Server-Side Template Injection Vulnerability
CVE
Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability
CVE
Atlassian Confluence Server and Data Center Remote Code Execution Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.