Please always follow original links and official vendor documentation. We cannot guarantee that information has been changed after publication of this log.
Atlassian released general information
Based on FAQ, sent out warning to all K15t support customers
Atlassian released a Security Advisory
K15t setup a this resources page
If you use Bitbucket, don’t forget to check Elasticsearch and modify JVM option as described in community link:
Security Advisory sent out to all K15t customer (support and license)
Second Log4j vulnerability published (CVE-2021-44228) + CVE-2021-45046
UPDATED BELOW Is Bitbucket vulnerable through Elasticsearch?
Read Adaptavist’s evaluation about Script Runner:
Adaptavist's apps on the Atlassian Marketplace are not directly impacted by this issue and there are no actions needed to address the vulnerability.
New Log4j related newly discovered vulnerabilities (see below).
Atlassian has detected these vulnerabilities in both Jira and Confluence server and is working on further analysis. We expect Atlassian to publish an official statement anytime soon.