CVE-2022-26136 / CVE-2022-26137 vulnerability impact on Mibex apps
- Sue Rocha
- Michael Rüegg
For affected Atlassian products, please see the https://confluence.atlassian.com/kb/faq-for-cve-2022-26136-cve-2022-26137-1141988432.html
Customers need to upgrade to the latest Atlassian host product versions so the apps are not vulnerable.
App name | Server and DC Atlassian host product versions require upgrade so the apps are not vulnerable | Confirmed 2022-26136 / 26137 safe ✅ |
|---|---|---|
Include Code Quality for Bitbucket (formerly Sonar™ for Bitbucket) | Bitbucket Server and Data Center version upgrade required
| Cloud version ✅ |
Include Code Quality for Bamboo (formerly Sonar™ for Bamboo) | Bamboo Server and Data Center version upgrade required
| N/A |
Include Bitbucket for Confluence | Confluence Server and Data Center version update required
| Cloud version ✅ |
Include GitLab for Confluence | N/A | Cloud version ✅ |
Jupyter Viewer for Confluence | Confluence Server and Data Center version update required | Cloud version ✅ |
Repository Templates for Bitbucket | Bitbucket Server and Data Center version upgrade required | N/A |
Activity Streams for Bitbucket | Bitbucket Server and Data Center version upgrade required | N/A |
Code Review Assistant for Bitbucket | Bitbucket Server and Data Center version upgrade required | N/A |
Code Owners for Bitbucket | Bitbucket Server and Data Center version upgrade required | Cloud version ✅ |
Pull Request Checklist Buddy for Bitbucket | Bitbucket Data Center version upgrade required | Cloud version ✅ |
Pull Request Please for Bitbucket | Bitbucket Server version upgrade required | N/A |
Beautiful Math for Confluence | N/A | Cloud version ✅ |
Create Branch Wizard for Bitbucket | Bitbucket Server and Data Center version upgrade required | N/A |
Repository Dashboard for Bitbucket | Bitbucket Server version upgrade required | N/A |
Developer Statistics for Confluence | N/A | Cloud version ✅ |
ShipIt to Marketplace for Bamboo | Bamboo Server version upgrade required | N/A |
No More Secrets for Jira | N/A | Cloud version ✅ |
Related content
SONAR™, SONARQUBE™ and SONARCLOUD™ are independent and trademarked products and services of SonarSource SA: see sonarsource.com, sonarqube.org, sonarcloud.io.