CVE-2023-22501

Jira Service Management Server and Data Center Authentication Bypass Vulnerability (CVE-2023-22501) Notice

fevereiro 7, 2023

Overview Recently, NSFOCUS CERT found that Atlassian officially fixed a Jira Service Management Server and Data Center authentication bypass vulnerability (CVE-2023-22501). When write access to user directories and outgoing emails is enabled on a Jira Service Management instance, an unauthenticated remote attacker can gain access to Jira Service Management by impersonating users who have never […]

Search

Inscreva-se no Blog da NSFOCUS