CVE-2022-26136 / CVE-2022-26137 vulnerability impact on Mibex apps

Owned by Sue Rocha
Last updated: Jul 22, 2022 by Michael Rüegg
1 min read

For affected Atlassian products, please see the https://confluence.atlassian.com/kb/faq-for-cve-2022-26136-cve-2022-26137-1141988432.html

Customers need to upgrade to the latest Atlassian host product versions so the apps are not vulnerable.

App name

Server and DC Atlassian host product versions require upgrade so the apps are not vulnerable

Confirmed 2022-26136 / 26137 safe ✅

App name

Server and DC Atlassian host product versions require upgrade so the apps are not vulnerable

Confirmed 2022-26136 / 26137 safe ✅

Include Code Quality for Bitbucket (formerly Sonarâ„¢ for Bitbucket)

Bitbucket Server and Data Center version upgrade required

 

Cloud version ✅

Include Code Quality for Bamboo (formerly Sonarâ„¢ for Bamboo)

Bamboo Server and Data Center version upgrade required

 

N/A

Include Bitbucket for Confluence

Confluence Server and Data Center version update required

 

Cloud version ✅

Include GitLab for Confluence

N/A

Cloud version ✅

Jupyter Viewer for Confluence

Confluence Server and Data Center version update required

Cloud version ✅

Repository Templates for Bitbucket

Bitbucket Server and Data Center version upgrade required

N/A

Activity Streams for Bitbucket

Bitbucket Server and Data Center version upgrade required

N/A

Code Review Assistant for Bitbucket

Bitbucket Server and Data Center version upgrade required

N/A

Code Owners for Bitbucket

Bitbucket Server and Data Center version upgrade required

Cloud version ✅

Pull Request Checklist Buddy for Bitbucket

Bitbucket Data Center version upgrade required

Cloud version ✅

Pull Request Please for Bitbucket

Bitbucket Server version upgrade required

N/A

Beautiful Math for Confluence

N/A

Cloud version ✅

Create Branch Wizard for Bitbucket

Bitbucket Server and Data Center version upgrade required

N/A

Repository Dashboard for Bitbucket

Bitbucket Server version upgrade required

N/A

Developer Statistics for Confluence

N/A

Cloud version ✅

ShipIt to Marketplace for Bamboo

Bamboo Server version upgrade required

N/A

No More Secrets for Jira

N/A

Cloud version ✅

 

SONARâ„¢, SONARQUBEâ„¢ and SONARCLOUDâ„¢ are independent and trademarked products and services of SonarSource SA: see sonarsource.com, sonarqube.org, sonarcloud.io.