Rewterz Threat Advisory – CVE-2023-23692 – Dell PowerProtect Data Domain appliance Vulnerability
February 7, 2023Rewterz Threat Alert – Gafgyt aka Bashlite Malware – Active IOCs
February 7, 2023Rewterz Threat Advisory – CVE-2023-23692 – Dell PowerProtect Data Domain appliance Vulnerability
February 7, 2023Rewterz Threat Alert – Gafgyt aka Bashlite Malware – Active IOCs
February 7, 2023Severity
Medium
Analysis Summary
CVE-2023-22501
Atlassian Jira Service Management Server and Data Center could allow a remote attacker to bypass security restrictions, caused by improper authentication validation. By sending a specially-crafted request, an attacker could exploit this vulnerability to impersonate another user and gain access to a Jira Service Management instance.
Impact
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2023-22501
Affected Vendors
Atlassian
Affected Products
Atlassian Jira Service Management Server and Data Center 5.3.0
Atlassian Jira Service Management Server and Data Center 5.3.1
Atlassian Jira Service Management Server and Data Center 5.3.2
Atlassian Jira Service Management Server and Data Center 5.4.0
Atlassian Jira Service Management Server and Data Center 5.4.1
Atlassian Jira Service Management Server and Data Center 5.5.0
Remediation
Refer to Jira Server Security Advisory for patch, upgrade or suggested workaround information.