Lucene search
K

5 matches found

The Hacker News
The Hacker News
added 2022/04/23 5:52 a.m.390 views

Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability

Atlassian has published a security advisory warning of a critical vulnerability in its Jira software that could be abused by a remote, unauthenticated attacker to circumvent authentication protections. Tracked as CVE-2022-0540, the flaw is rated 9.9 out of 10 on the CVSS scoring system and reside...

9.8CVSS1.5AI score0.99999EPSS
Exploits47
Tenable Nessus
Tenable Nessus
added 2022/04/22 12:0 a.m.164 views

Atlassian Jira < 8.13.18 / 8.14.x < 8.20.6 / 8.21.x Authentication Bypass in Seraph (JRASERVER-73650)

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is affected by an authentication bypass vulnerability. Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to bypass authentication and...

9.8CVSS8.8AI score0.88057EPSS
Exploits2References3
Circl
Circl
added 2022/04/20 10:25 p.m.52 views

CVE-2022-0540

creationtimestamp| type| source ---|---|--- 2022-04-20 22:25:49+00:00| seen| https://t.me/cibsecurity/41191 2022-04-22 19:40:31+00:00| seen| https://t.me/NeKaspersky/2151 2022-04-23 07:55:57+00:00| seen| https://t.me/thehackernews/2112 2022-04-23 08:48:58+00:00| seen| https://t.me/cKure/9410...

9.8CVSS7.5AI score0.88057EPSS
In wildExploits2References18
Cvelist
Cvelist
added 2022/04/20 6:30 p.m.51 views

CVE-2022-0540

A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before...

9.8AI score0.88057EPSS
Exploits2References3
CVE
CVE
added 2022/04/20 6:30 p.m.385 views

CVE-2022-0540

CVE-2022-0540 is an authentication-bypass vulnerability in Atlassian Jira Seraph. It enables remote, unauthenticated access via a crafted HTTP request. Affected product ranges (per connected documents): Jira Server/Data Center: &lt; 8.13.18; 8.14.x–8.19.x; 8.20.0–8.20.6; 8.21.x Jira Service Manag...

9.8CVSS9.5AI score0.88057EPSS
In wildExploits2References3Affected Software3
Rows per page
Query Builder