admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2022/0xxx/CVE-2022-0540.json
CVE Team 01ad921a54
"-Synchronized-Data."
2022-04-20 19:01:35 +00:00

198 lines
9.2 KiB
JSON
Raw Blame History

{
"CVE_data_meta": {
"ASSIGNER": "security@atlassian.com",
"DATE_PUBLIC": "2022-04-20T00:00:00",
"ID": "CVE-2022-0540",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Jira Core Server",
"version": {
"version_data": [
{
"version_value": "8.13.18",
"version_affected": "<"
},
{
"version_value": "8.14.0",
"version_affected": ">="
},
{
"version_value": "8.20.6",
"version_affected": "<"
},
{
"version_value": "8.21.0",
"version_affected": ">="
},
{
"version_value": "8.22.0",
"version_affected": "<"
}
]
}
},
{
"product_name": "Jira Software Server",
"version": {
"version_data": [
{
"version_value": "8.13.18",
"version_affected": "<"
},
{
"version_value": "8.14.0",
"version_affected": ">="
},
{
"version_value": "8.20.6",
"version_affected": "<"
},
{
"version_value": "8.21.0",
"version_affected": ">="
},
{
"version_value": "8.22.0",
"version_affected": "<"
}
]
}
},
{
"product_name": "Jira Software Data Center",
"version": {
"version_data": [
{
"version_value": "8.13.18",
"version_affected": "<"
},
{
"version_value": "8.14.0",
"version_affected": ">="
},
{
"version_value": "8.20.6",
"version_affected": "<"
},
{
"version_value": "8.21.0",
"version_affected": ">="
},
{
"version_value": "8.22.0",
"version_affected": "<"
}
]
}
},
{
"product_name": "Jira Service Management Server",
"version": {
"version_data": [
{
"version_value": "4.13.18",
"version_affected": "<"
},
{
"version_value": "4.14.0",
"version_affected": ">="
},
{
"version_value": "4.20.6",
"version_affected": "<"
},
{
"version_value": "4.21.0",
"version_affected": ">="
},
{
"version_value": "4.22.0",
"version_affected": "<"
}
]
}
},
{
"product_name": "Jira Service Management Data Center",
"version": {
"version_data": [
{
"version_value": "4.13.18",
"version_affected": "<"
},
{
"version_value": "4.14.0",
"version_affected": ">="
},
{
"version_value": "4.20.6",
"version_affected": "<"
},
{
"version_value": "4.21.0",
"version_affected": ">="
},
{
"version_value": "4.22.0",
"version_affected": "<"
}
]
}
}
]
},
"vendor_name": "Atlassian"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before 8.22.0. This also affects Atlassian Jira Service Management Server and Data Center versions before 4.13.18, versions 4.14.0 and later before 4.20.6, and versions 4.21.0 and later before 4.22.0."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Improper Authentication"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://confluence.atlassian.com/display/JIRA/Jira+Security+Advisory+2022-04-20",
"refsource": "MISC",
"name": "https://confluence.atlassian.com/display/JIRA/Jira+Security+Advisory+2022-04-20"
},
{
"url": "https://jira.atlassian.com/browse/JRASERVER-73650",
"refsource": "MISC",
"name": "https://jira.atlassian.com/browse/JRASERVER-73650"
},
{
"url": "https://jira.atlassian.com/browse/JSDSERVER-11224",
"refsource": "MISC",
"name": "https://jira.atlassian.com/browse/JSDSERVER-11224"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink