Lucene search
China National Vulnerability DatabaseCNVD-2022-05435HistoryJan 14, 2022 - 12:00 a.m.
Atlassian Jira Access Control Error Vulnerability (CNVD-2022-05435)
2022-01-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
atlassian jira
access control
vulnerability
networked system
unauthorized roles
authenticated remote attacker
custom field features
EPSS
0.001
Percentile
35.3%
Atlassian Jira is a defect tracking management system from Atlassian Australia. Atlassian Jira Center is vulnerable to an access control error that occurs when a networked system or product does not properly restrict access to resources from unauthorized roles, which can be exploited by an authenticated remote attacker to view private objects through a false access control vulnerability in custom field features.
Related
prion
prion
Improper access control
2022-01-10 16:15:00
atlassian
atlassian
cve
cve
CVE-2021-43949
2022-01-10 16:15:09
nvd
nvd
CVE-2021-43949
2022-01-10 16:15:09
cvelist
cvelist
CVE-2021-43949
2022-01-10 15:26:24
nessus
nessus
Atlassian Jira Service Management < 4.21.0 Multiple Vulnerabilities
2023-05-03 00:00:00