Authentication bypass vulnerability in Atlassian Jira Server - CVE-2022-0540 (linux)ID: oval:org.secpod.oval:def:91100 | Date: (C)2023-07-19 (M)2023-08-16 |
Class: VULNERABILITY | Family: unix |
The host is installed with Atlassian Jira Server before 8.13.18, 8.14.0 before 8.20.6, or 8.21.0 before 8.22.0 and is prone to an authentication bypass vulnerability. A flaw is present in the application which fails to properly handle a specially crafted HTTP request. Successful exploitation could allows a remote, unauthenticated attacker to bypass authentication.
Product: |
Atlassian Jira Server |