Does anyone have any details about the recent security issue with the Universal Plugin Manager? It's said to be a reverse tabnabbing security vulnerability but we would like to have more details to make our own security assessment to decide if we wanna install the update or not.
Hi Patrick,
UPM is formally speaking 'closed source' and on the contrary to Jira I am not 100% sure if security issues are published at all.
In case you have a valid license in your case I'd raise a support ticket with Atlassian team and ask if some details can be shared with your team regarding the specific vulnerability.
Cheers,
Daniel
Atlassian Government Cloud has achieved FedRAMP Authorization at the Moderate level! Join our webinar to learn how you can accelerate mission success and move work forward faster in cloud, all while ensuring your critical data is secure.
Register NowOnline forums and learning are now in one easy-to-use experience.
By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.