CVE-2022-26137

Published Jul 20, 2022

Last updated a month ago

CVSS high 8.8

Overview

Description: A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to cause additional Servlet Filters to be invoked when the application processes requests or responses. Atlassian has confirmed and fixed the only known security issue associated with this vulnerability: Cross-origin resource sharing (CORS) bypass. Sending a specially crafted HTTP request can invoke the Servlet Filter used to respond to CORS requests, resulting in a CORS bypass. An attacker that can trick a user into requesting a malicious URL can access the vulnerable application with the victim’s permissions. Atlassian Bamboo versions are affected before 8.0.9, from 8.1.0 before 8.1.8, and from 8.2.0 before 8.2.4. Atlassian Bitbucket versions are affected before 7.6.16, from 7.7.0 before 7.17.8, from 7.18.0 before 7.19.5, from 7.20.0 before 7.20.2, from 7.21.0 before 7.21.2, and versions 8.0.0 and 8.1.0. Atlassian Confluence versions are affected before 7.4.17, from 7.5.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and version 7.21.0. Atlassian Crowd versions are affected before 4.3.8, from 4.4.0 before 4.4.2, and version 5.0.0. Atlassian Fisheye and Crucible versions before 4.8.10 are affected. Atlassian Jira versions are affected before 8.13.22, from 8.14.0 before 8.20.10, and from 8.21.0 before 8.22.4. Atlassian Jira Service Management versions are affected before 4.13.22, from 4.14.0 before 4.20.10, and from 4.21.0 before 4.22.4.
Source: security@atlassian.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 8.8
Impact score: 5.9
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: CWE-346
security@atlassian.com: CWE-180

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:atlassian:bamboo:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "218C960A-04C6-4242-BEBA-C81CF5F1F722",
            "versionEndExcluding": "7.2.10",
            "versionStartIncluding": "7.2.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bamboo:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E360CDE0-FD1E-4337-8268-DB89CF605EE0",
            "versionEndExcluding": "8.0.9",
            "versionStartIncluding": "8.0.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bamboo:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0913EE0-2046-4E7E-966D-DC894E34D12B",
            "versionEndExcluding": "8.1.8",
            "versionStartIncluding": "8.1.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bamboo:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D182C1B1-A5FF-4777-9835-4E9114BB68DC",
            "versionEndExcluding": "8.2.4",
            "versionStartIncluding": "8.2.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bitbucket:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4DCD53E4-3169-4E8A-88D1-38BE51D09DD3",
            "versionEndExcluding": "7.6.16"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bitbucket:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B878E40-95A7-40A7-9C52-6BC0C2FD3F54",
            "versionEndExcluding": "7.17.8",
            "versionStartIncluding": "7.7.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bitbucket:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "46305D5A-7F7B-4A04-9DAD-E582D1193A7E",
            "versionEndExcluding": "7.19.5",
            "versionStartIncluding": "7.18.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bitbucket:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A96B135B-9272-457E-A557-6566554262D3",
            "versionEndExcluding": "7.20.2",
            "versionStartIncluding": "7.20.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bitbucket:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62956861-BEDE-40C8-B628-C831087E7BDB",
            "versionEndExcluding": "7.21.2",
            "versionStartIncluding": "7.21.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bitbucket:8.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A85565F-3F80-4E00-A706-AB4B2EAA4AFB"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:bitbucket:8.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99E2E3C0-CDF0-4D79-80A6-85E71B947ED9"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C543CA6-8E8A-476C-AB27-614DF4EC68A5",
            "versionEndExcluding": "7.4.17"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45FD913B-45DE-4CA8-9733-D62F54B19E74",
            "versionEndExcluding": "7.13.7",
            "versionStartIncluding": "7.5.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12E753EB-0D31-448B-B8DE-0A95434CC97C",
            "versionEndExcluding": "7.14.3",
            "versionStartIncluding": "7.14.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE114494-74F0-454C-AAC4-8B8E5F1C67D0",
            "versionEndExcluding": "7.15.2",
            "versionStartIncluding": "7.15.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90BB3572-29ED-415F-AD34-00EB76271F9C",
            "versionEndExcluding": "7.16.4",
            "versionStartIncluding": "7.16.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30EF756A-B4E9-4E5D-BE6F-02CE95F12C9C",
            "versionEndExcluding": "7.17.4",
            "versionStartIncluding": "7.17.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:7.18.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A56B6A10-E23F-49EF-8C07-1AEDFCAE2788"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AE8BE634-1599-4790-9410-6CA43BC60C4D",
            "versionEndExcluding": "7.4.17"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52E68DFD-48F5-4949-AFEA-3829CA5DFC04",
            "versionEndExcluding": "7.13.7",
            "versionStartIncluding": "7.5.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5DCDEC6C-4515-4CAA-9D82-7BF68A3AAE7E",
            "versionEndExcluding": "7.14.3",
            "versionStartIncluding": "7.14.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9948F94-DF67-4E3C-8CD4-417D57FBC60F",
            "versionEndExcluding": "7.15.2",
            "versionStartIncluding": "7.15.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30E63ECB-85A8-4D41-A9B5-9FFF18D9CDB1",
            "versionEndExcluding": "7.16.4",
            "versionStartIncluding": "7.16.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "694171BD-FAE2-472C-8183-04BCA2F7B9A7",
            "versionEndExcluding": "7.17.4",
            "versionStartIncluding": "7.17.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:7.18.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0AC5E81B-DA4B-45E7-9584-4B576E49FD8B"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:crowd:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE028964-B3FC-4883-9967-68DE46EE7F6F",
            "versionEndExcluding": "4.3.8"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:crowd:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57DC9E2A-4C89-420D-9330-F11E56BF2F83",
            "versionEndExcluding": "4.4.2",
            "versionStartIncluding": "4.4.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:crowd:5.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C50A718F-C67B-4462-BB7E-F80408DEF07D"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:crucible:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92329A2E-13E8-4818-85AB-3E7F479411EF",
            "versionEndExcluding": "4.8.10"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:fisheye:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30DDE751-CA88-4CFB-9E60-4243851B4B53",
            "versionEndExcluding": "4.8.10"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D91B8507-A7A7-4B74-9999-F1DEA9F487A9",
            "versionEndExcluding": "8.13.22",
            "versionStartIncluding": "8.13.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "963AE427-2897-42CB-AE11-654D700E690B",
            "versionEndExcluding": "8.20.10",
            "versionStartIncluding": "8.14.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7CD8891-BB97-4AD3-BEE4-6CCA0D8A2D85",
            "versionEndExcluding": "8.22.4",
            "versionStartIncluding": "8.21.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E73A5202-6114-48E6-8F9B-C03B2E707055",
            "versionEndExcluding": "8.13.22",
            "versionStartIncluding": "8.13.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D22AB11D-1D73-45DC-803C-146EFED18CDA",
            "versionEndExcluding": "8.20.10",
            "versionStartIncluding": "8.14.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB2091E9-0B14-4786-852F-454C56D20839",
            "versionEndExcluding": "8.22.4",
            "versionStartIncluding": "8.21.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_service_desk:*:*:*:*:data_center:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1451C219-8AAA-4165-AE2C-033EF7B6F93A",
            "versionEndExcluding": "4.13.22"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_service_desk:*:*:*:*:server:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD23F987-0F14-4938-BB51-4EE61C24EB62",
            "versionEndExcluding": "4.13.22"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:data_center:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "39F77953-41D7-4398-9F07-2A057A993762",
            "versionEndExcluding": "4.20.10",
            "versionStartIncluding": "4.14.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:server:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CADBE0E7-36D9-4F6F-BEE6-A1E0B9428C2A",
            "versionEndExcluding": "4.20.10",
            "versionStartIncluding": "4.14.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:data_center:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC0DB08B-2034-4691-A7B2-3E5F8B6318B1",
            "versionEndExcluding": "4.22.4",
            "versionStartIncluding": "4.21.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:server:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97A17BE7-7CCC-46D8-A317-53E2B026DF6E",
            "versionEndExcluding": "4.22.4",
            "versionStartIncluding": "4.21.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References