CVE-2022-0540

Description

A vulnerability in Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially crafted HTTP request. This affects Atlassian Jira Server and Data Center versions before 8.13.18, versions 8.14.0 and later before 8.20.6, and versions 8.21.0 and later before 8.22.0. This also affects Atlassian Jira Service Management Server and Data Center versions before 4.13.18, versions 4.14.0 and later before 4.20.6, and versions 4.21.0 and later before 4.22.0.

References

Link	Tags
https://confluence.atlassian.com/display/JIRA/Jira+Security+Advisory+2022-04-20	issue tracking patch vendor advisory
https://jira.atlassian.com/browse/JRASERVER-73650	issue tracking patch vendor advisory
https://jira.atlassian.com/browse/JSDSERVER-11224	issue tracking patch vendor advisory

Frequently Asked Questions

What is the severity of CVE-2022-0540?: CVE-2022-0540 has been scored as a critical severity vulnerability.
How to fix CVE-2022-0540?: To fix CVE-2022-0540, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-0540 being actively exploited in the wild?: It is possible that CVE-2022-0540 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~93% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-0540?: CVE-2022-0540 affects Atlassian Jira Core Server, Atlassian Jira Software Server, Atlassian Jira Software Data Center, Atlassian Jira Service Management Server, Atlassian Jira Service Management Data Center.

Description

Category

CWE-287 – Improper Authentication

References

Frequently Asked Questions