Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2022-0540 — Improper Authentication in Atlassian Jira Core Server

CWE-287 — Improper Authentication5 documents5 sources

Severity

9.8CRITICALNVD

EPSS

92.4%

top 0.27%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Atlassian Jira Core Server Atlassian Jira Service Management Data Center Atlassian Jira Service Management Server +5 more

Timeline

PublishedApr 20

Latest updateApr 21

Description

A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before 8.22.0. This also affects Atlassian Jira Service Management Server and Data Center versions before 4.13.18, versions 4.14.0 and later before 4.20.6, and versions 4.21.0 and later before 4.22.0.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages8 packages

▶CVEListV5atlassian/jira_service_management_data_centerunspecified — 4.13.18+4

▶NVDatlassian/jira_data_center8.14.0 — 8.20.6+2

▶CVEListV5atlassian/jira_software_data_centerunspecified — 8.13.18+4

▶CVEListV5atlassian/jira_service_management_serverunspecified — 4.13.18+4

▶NVDatlassian/jira_server8.14.0 — 8.20.6+2

Patches

Patch: confluence.atlassian.com ↗Patch: jira.atlassian.com ↗Patch: jira.atlassian.com ↗

🔴Vulnerability Details

GHSA

GHSA-h5cm-vc68-69h9: A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request↗2022-04-21

▶

CVEList

CVE-2022-0540: A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request↗2022-04-20

▶

VulnCheck

Atlassian Jira Server and Data Center Authentication Bypass Vulnerability↗2022

▶

💥Exploits & PoCs

Nuclei

Atlassian Jira Seraph - Authentication Bypass

▶

External resources

NVD MITRE

Affected products8

Atlassian Jira Core Server≥ unspecified, < 8.13.18≥ 8.14.0, < unspecified≥ unspecified, < 8.20.6+2 more

Atlassian Jira Data Centerfixed in 8.13.8≥ 8.14.0, < 8.20.6≥ 8.21.0, < 8.22.0

Atlassian Jira Serverfixed in 8.13.8≥ 8.14.0, < 8.20.6≥ 8.21.0, < 8.22.0

Atlassian Jira Service Managementfixed in 4.13.8fixed in 4.13.18≥ 4.14.0, < 4.20.6+1 more

Atlassian Jira Service Management Data Center≥ unspecified, < 4.13.18≥ 4.14.0, < unspecified≥ unspecified, < 4.20.6+2 more

Atlassian Jira Service Management Server≥ unspecified, < 4.13.18≥ 4.14.0, < unspecified≥ unspecified, < 4.20.6+2 more

Atlassian Jira Software Data Center≥ unspecified, < 8.13.18≥ 8.14.0, < unspecified≥ unspecified, < 8.20.6+2 more

Atlassian Jira Software Server≥ unspecified, < 8.13.18≥ 8.14.0, < unspecified≥ unspecified, < 8.20.6+2 more

Disclosure

PublishedApr 20, 2022

Latest updateApr 21, 2022