5 matches found
Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability
Atlassian has published a security advisory warning of a critical vulnerability in its Jira software that could be abused by a remote, unauthenticated attacker to circumvent authentication protections. Tracked as CVE-2022-0540, the flaw is rated 9.9 out of 10 on the CVSS scoring system and reside...
Atlassian Jira < 8.13.18 / 8.14.x < 8.20.6 / 8.21.x Authentication Bypass in Seraph (JRASERVER-73650)
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is affected by an authentication bypass vulnerability. Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to bypass authentication and...
CVE-2022-0540
creationtimestamp| type| source ---|---|--- 2022-04-20 22:25:49+00:00| seen| https://t.me/cibsecurity/41191 2022-04-22 19:40:31+00:00| seen| https://t.me/NeKaspersky/2151 2022-04-23 07:55:57+00:00| seen| https://t.me/thehackernews/2112 2022-04-23 08:48:58+00:00| seen| https://t.me/cKure/9410...
CVE-2022-0540
A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before...
CVE-2022-0540
CVE-2022-0540 is an authentication-bypass vulnerability in Atlassian Jira Seraph. It enables remote, unauthenticated access via a crafted HTTP request. Affected product ranges (per connected documents): Jira Server/Data Center: < 8.13.18; 8.14.x–8.19.x; 8.20.0–8.20.6; 8.21.x Jira Service Manag...