NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。
Assigner(CNA/発行元):[email protected] この条件を外す
| CVE | 説明 | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|
| CVE-2025-22186 | Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | 該当なし | 該当なし | 2025-12-31 | 2025-12-31 |
| CVE-2025-22185 | Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | 該当なし | 該当なし | 2025-12-31 | 2025-12-31 |
| CVE-2025-22184 | Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | 該当なし | 該当なし | 2025-12-31 | 2025-12-31 |
| CVE-2025-22183 | Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | 該当なし | 該当なし | 2025-12-31 | 2025-12-31 |
| CVE-2025-22182 | Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | 該当なし | 該当なし | 2025-12-31 | 2025-12-31 |
| CVE-2025-22181 | Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | 該当なし | 該当なし | 2025-12-31 | 2025-12-31 |
| CVE-2025-22180 | Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | 該当なし | 該当なし | 2025-12-31 | 2025-12-31 |
| CVE-2025-22155 | Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | 該当なし | 該当なし | 2025-12-31 | 2025-12-31 |
| CVE-2025-22154 | Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. | 該当なし | 該当なし | 2025-12-31 | 2025-12-31 |
| CVE-2025-22178 | Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to view items on the "Why" page. | 5.3 | 0.17% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22177 | Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to view other team overviews. | 5.3 | 0.17% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22176 | Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to view audit log items. | 5.3 | 0.17% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22175 | Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to modify the steps of another user's private checklist. | 5.3 | 0.16% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22174 | Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to view portfolio rooms without the required permission. | 5.3 | 0.17% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22173 | Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to view certain sprint data without the required permission. | 5.3 | 0.17% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22172 | Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to read external reports without the required permission. | 5.3 | 0.17% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22171 | Jira Align is vulnerable to an authorization issue. A low-privilege user is able to alter the private checklists of other users. | 5.3 | 0.16% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22170 | Jira Align is vulnerable to an authorization issue. A low-privilege user without sufficient privileges to perform an action could if they included a particular state-related parameter of a user with sufficient privileges to perform the action. | 5.3 | 0.17% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22169 | Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to subscribe to an item/object without having the expected permission level. | 5.3 | 0.16% | 2025-10-22 | 2026-06-17 |
| CVE-2025-22168 | Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected endpoints that disclose a small amount of sensitive information. For example, a low-level user was able to read the steps of another user's private checklist. | 5.3 | 0.17% | 2025-10-22 | 2026-06-17 |