Main Vulnerability Database Exploits ID:7889 - Exploit for Improper Authentication in Atlassian products - CVE-2022-0540

ID:7889 - Exploit for Improper Authentication in Atlassian products - CVE-2022-0540

Published: May 26, 2022

Vulnerability identifier: #VU62540

Vulnerability risk: High

CVE-ID: CVE-2022-0540

CWE-ID: CWE-287

Exploitation vector: Remote access

Vulnerable software:
Jira Software
Jira Data Center
Jira Service Management Data Center
Jira Service Management Server

Link to public exploit:

https://github.com/Pear1y/CVE-2022-0540-Preauth-RCE

Vulnerability description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to an error in the Jira Seraph. A remote attacker can send a specially crafted HTTP request to bypass authentication and authorization requirements in WebWork actions and gain unauthorized access to the application.

The vulnerability affects applications that specify roles-required at the webwork1 action namespace level and do not specify it at an action level.

Remediation

Install updates from vendor's website.

ID:7889 - Exploit for Improper Authentication in Atlassian products - CVE-2022-0540

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human