Atlassian has released fixes that address critical security flaws in Jira Service Management Server and Data Center. This vulnerability could be exploited by an attacker to impersonate another user and gain unauthorized access to a vulnerable instance.
This vulnerability is tracked as CVE-2023-22501 (CVSS score: 9.4) and is described as a low complexity attack and broken authentication case.
Atlassian said, “An authentication vulnerability was discovered in Jira Service Management Server and Data Center that could allow an attacker to impersonate another user and under certain circumstances gain access to a Jira Service Management instance. increase.
“Write access to your user directory and outbound email enabled on your Jira Service Management instance could allow an attacker to access sign-up tokens sent to users with accounts that have never logged in. .”
According to Atlassian, tokens can be obtained in one of two scenarios.
- If these users’ Jira issues or requests contain an attacker, or
- If an attacker is forwarded or gains access to emails containing “View Request” links from these users
Also, users synced to the Jira service via a read-only user directory or single sign-on (SSO) will not be affected, but will continue to interact with the instance via email even if SSO is configured. Please also note that external customers are affected.
The vulnerability was introduced in version 5.3.0 and affects all subsequent versions 5.3.1, 5.3.2, 5.4.0, 5.4.1 and 5.5.0, according to the Australian software service provider . A fix is available starting with versions 5.3.3, 5.3.3, 5.5.1, and 5.6.0.
Atlassian emphasized that the Jira site is hosted on the cloud via Atlassian.[.]net domain is not affected by this flaw and no action is required in this case.
This disclosure comes more than two months after the company closed two critical security holes (CVE-2022-43781 and CVE-2022-43782) in their Bitbucket Server, Data Center, and Crowd products, and the code It can be exploited for execution or calling privileged API endpoints. .
With flaws in Atlassian products becoming an attractive attack vector in recent months, it’s important that users upgrade their installations to the latest versions to mitigate potential threats.
