Lucene search
K

6 matches found

The Hacker News
The Hacker News
added 2022/07/21 8:41 a.m.225 views

Atlassian Rolls Out Security Patch for Critical Confluence Vulnerability

Atlassian has rolled out fixes to remediate a critical security vulnerability pertaining to the use of hard-coded credentials affecting the Questions For Confluence app for Confluence Server and Confluence Data Center. The flaw, tracked as CVE-2022-26138, arises when the app in question is enable...

1AI score0.9817EPSS
Exploits1
The Hacker News
The Hacker News
added 2022/04/23 5:52 a.m.386 views

Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability

Atlassian has published a security advisory warning of a critical vulnerability in its Jira software that could be abused by a remote, unauthenticated attacker to circumvent authentication protections. Tracked as CVE-2022-0540, the flaw is rated 9.9 out of 10 on the CVSS scoring system and reside...

9.8CVSS1.5AI score0.99999EPSS
Exploits47
NVD
NVD
added 2022/04/20 7:15 p.m.23 views

CVE-2022-0540

A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before...

9.8CVSS0.88333EPSS
Exploits2References3
Prion
Prion
added 2022/04/20 7:15 p.m.26 views

Authentication flaw

A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before...

6.8CVSS9.5AI score0.88333EPSS
Exploits2References3Affected Software3
Vulnrichment
Vulnrichment
added 2022/04/20 6:30 p.m.22 views

CVE-2022-0540

A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before...

9.6AI score0.88333EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2022/04/20 12:0 a.m.7 views

CVE-2022-0540

A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before...

9.8CVSS8AI score0.88333EPSS
Exploits2References5Affected Software5
Rows per page
Query Builder