Vulnerability Details CVE-2023-36662
The TechTime User Management components for Atlassian products allow stored XSS on the Bulk User Actions page. This affects User Management for Jira 2.0.0 through 2.17.1, User Management for Confluence 2.0.0 through 2.15.24, and User Management for Bitbucket 2.2.2 through 2.15.24.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 62.6%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2023-36662
-
cpe:2.3:a:techtime:user_management:2.0.0
-
cpe:2.3:a:techtime:user_management:2.15.24
-
cpe:2.3:a:techtime:user_management:2.17.1
-
cpe:2.3:a:techtime:user_management:2.2.2