{"id":61,"date":"2024-04-19T18:34:49","date_gmt":"2024-04-19T18:34:49","guid":{"rendered":"https:\/\/aldomonges.com\/aldomonges\/?p=61"},"modified":"2024-04-19T18:34:49","modified_gmt":"2024-04-19T18:34:49","slug":"actualizacion-de-seguridad-de-productos-atlassian","status":"publish","type":"post","link":"https:\/\/aldomonges.com\/aldomonges\/?p=61","title":{"rendered":"Actualizaci\u00f3n de Seguridad de Productos Atlassian"},"content":{"rendered":"<p>l fabricante Atlassian ha liberado actualizaciones para sus productos Jira, Confluence y Bamboo que resuelven 7 vulnerabilidades consideradas Altas.\u00a0 Entre las vulnerabilidades\u00a0 se incluyen los tipos DOS de denegacion de servicio y SSRF (Server Side Request Forgery)\u00a0 en los sistemas afectados.<\/p>\n<p><strong>Productos o Items Afectados<\/strong><\/p>\n<p>La vulnerabilidad afecta a los siguientes productos y versiones:<\/p>\n<ul>\n<li>Bamboo Data Center y Server<\/li>\n<li>9.6.0<\/li>\n<li>9.5.0 a 9.5.2<\/li>\n<li>9.4.0 a 9.4.3<\/li>\n<li>9.3.0 a 9.3.6<\/li>\n<li>9.2.0 a 9.2.12 (LTS)<\/li>\n<li>9.1.0 a 9.1.3<\/li>\n<li>9.0.0 a 9.0.4<\/li>\n<li>8.2.0 a 8.2.9<\/li>\n<li>Cualquier\u00a0 version anterior<\/li>\n<li>Confluence Data Center y Server<\/li>\n<li>8.7.0<\/li>\n<li>8.6.0 a 8.6.2<\/li>\n<li>8.5.0 a 8.5.6 (LTS)<\/li>\n<li>8.4.0 a 8.4.5<\/li>\n<li>8.3.0 a 8.3.4<\/li>\n<li>8.2.0 a 8.2.3<\/li>\n<li>8.1.0 a 8.1.4<\/li>\n<li>8.0.0 a 8.0.4<\/li>\n<li>7.20.0 a 7.20.3<\/li>\n<li>7.19.0 a 7.19.19 (LTS)<\/li>\n<li>7.18.0 a 7.18.3<\/li>\n<li>7.17.0 a 7.17.5<\/li>\n<li>Cualquier\u00a0 version anterior<\/li>\n<li>Jira Service Management Data Center y Server<\/li>\n<li>5.12.0 a 5.12.5 (LTS)<\/li>\n<li>5.11.0 a\u00a05.11.3<\/li>\n<li>5.10.0 a\u00a05.10.2<\/li>\n<li>5.9.0 a\u00a05.9.2<\/li>\n<li>5.8.0 a 5.8.2<\/li>\n<li>5.7.0 a 5.7.2<\/li>\n<li>5.6.0 a 5.6.2<\/li>\n<li>5.5.0 a 5.5.1<\/li>\n<li>5.4.0 a 5.4.18 (LTS)<\/li>\n<li>Cualquier\u00a0 version anterior<\/li>\n<\/ul>\n<ul>\n<li>Jira Software Data Center y Server<\/li>\n<li>9.14.0 a 9.14.1<\/li>\n<li>9.13.0 a 9.13.1<\/li>\n<li>9.12.0 a 9.12.5 LTS<\/li>\n<li>9.11.0 a 9.11.3<\/li>\n<li>9.10.0 a 9.10.2<\/li>\n<li>9.9.0 a 9.9.2<\/li>\n<li>9.8.0 a 9.8.2<\/li>\n<li>9.7.0 a 9.7.2<\/li>\n<li>9.6.0<\/li>\n<li>9.5.0 a 9.5.1<\/li>\n<li>9.4.0 a 9.4.17 LTS<\/li>\n<li>9.3.0 a 9.3.3<\/li>\n<li>9.2.0 a 9.2.1<\/li>\n<li>9.1.0 a 9.1.1<\/li>\n<li>9.0.0<\/li>\n<li>Cualquier\u00a0 version anterior<\/li>\n<\/ul>\n<p><strong>Impacto de la Vulnerabilidad<\/strong><\/p>\n<p>Se han asignado los siguientes identificadores de vulnerabilidad las cuales tienen asignado una severidad de 7.5 a 8.3 segun el caso. Visite los enlaces siguientes para conocer mas detalles sobre cada uno:<\/p>\n<ul>\n<li><a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-1370\"><u>CVE-2023-1370<\/u><\/a><\/li>\n<li><a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2023-52428\"><u>CVE-2023-52428<\/u><\/a><\/li>\n<li><a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-21634\"><u>CVE-2024-21634<\/u><\/a><\/li>\n<li><a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-22243\"><u>CVE-2024-22243<\/u><\/a><\/li>\n<li><a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-22257\"><u>CVE-2024-22257<\/u><\/a><\/li>\n<li><a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2024-22259\"><u>CVE-2024-22259<\/u><\/a><\/li>\n<\/ul>\n<p><strong>Recomendaci\u00f3n<\/strong><\/p>\n<p>Se recomienda a los administradores de sistemas actualizar el producto a la ultima version recomendada por el fabricante en la pagina de referencia, las cuales contienen la correcci\u00f3n para estas vulnerabilidades.<\/p>\n<p><strong>Enlaces de Referencia<\/strong><\/p>\n<ul>\n<li>https:\/\/confluence.atlassian.com\/security\/security-bulletin-april-16-2024-1387857429.html<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>l fabricante Atlassian ha liberado actualizaciones para sus productos Jira, Confluence y Bamboo que resuelven 7 vulnerabilidades consideradas Altas.\u00a0 Entre las vulnerabilidades\u00a0 se incluyen los [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":62,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[],"class_list":["post-61","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-seguridad-informatica"],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/sp-ao.shortpixel.ai\/client\/to_webp,q_glossy,ret_img\/https:\/\/www.cert.gov.py\/wp-content\/uploads\/2024\/04\/atlassian-scaled.webp?w=1920&resize=1920,1080&ssl=1","_links":{"self":[{"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/posts\/61","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=61"}],"version-history":[{"count":1,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/posts\/61\/revisions"}],"predecessor-version":[{"id":63,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/posts\/61\/revisions\/63"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/media\/62"}],"wp:attachment":[{"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=61"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=61"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=61"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}