Server-Side Request Forgery in Atlassian Jira Server and Data Center
CVE-2022-26135

6.5MEDIUM

Key Information:

Vendor
Atlassian
Status
Jira Core Server
Jira Software Server
Jira Software Data Center
Jira Service Management Server
Vendor
CVE Published:
30 June 2022

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A vulnerability in the Mobile Plugin for Jira Data Center and Server allows a remote, authenticated user to exploit a server-side request forgery through a batch endpoint. This flaw permits unauthorized data access, potentially leading to exposure of sensitive information. Affected versions include specific ranges in Jira Server and Data Center, as well as Jira Management Server and Data Center, highlighting the urgency for users to upgrade to secure versions to mitigate risks.

Affected Version(s)

Jira Core Server 8.0.0

Jira Core Server < 8.13.22

Jira Core Server 8.14.0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

jira-mobile-ssrf-exploit
Created by assetnote

CVE-2022-26135
Created by safe3s

References

https://jira.atlassian.com/browse/JRASERVER-73863
x_refsource_MISC
https://jira.atlassian.com/browse/JSDSERVER-11840
x_refsource_MISC
https://confluence.atlassian.com/display/JIRA/Jira+Server...
x_refsource_MISC

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.