Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

CVE-2022-26137

Disclosure Date: July 20, 2022 •

CVE-2022-26137 CVSS v3 Base Score: 8.8

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to cause additional Servlet Filters to be invoked when the application processes requests or responses. Atlassian has confirmed and fixed the only known security issue associated with this vulnerability: Cross-origin resource sharing (CORS) bypass. Sending a specially crafted HTTP request can invoke the Servlet Filter used to respond to CORS requests, resulting in a CORS bypass. An attacker that can trick a user into requesting a malicious URL can access the vulnerable application with the victim’s permissions. Atlassian Bamboo versions are affected before 8.0.9, from 8.1.0 before 8.1.8, and from 8.2.0 before 8.2.4. Atlassian Bitbucket versions are affected before 7.6.16, from 7.7.0 before 7.17.8, from 7.18.0 before 7.19.5, from 7.20.0 before 7.20.2, from 7.21.0 before 7.21.2, and versions 8.0.0 and 8.1.0. Atlassian Confluence versions are affected before 7.4.17, from 7.5.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and version 7.21.0. Atlassian Crowd versions are affected before 4.3.8, from 4.4.0 before 4.4.2, and version 5.0.0. Atlassian Fisheye and Crucible versions before 4.8.10 are affected. Atlassian Jira versions are affected before 8.13.22, from 8.14.0 before 8.20.10, and from 8.21.0 before 8.22.4. Atlassian Jira Service Management versions are affected before 4.13.22, from 4.14.0 before 4.20.10, and from 4.21.0 before 4.22.4.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

8.8 High

Impact Score:

5.9

Exploitability Score:

2.8

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

Required

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

General Information

Offensive Application

Unknown

Utility Class

Unknown

Ports

Unknown

Vulnerable Versions

Bamboo Server 8.0.9

Bamboo Server 8.1.0

Bamboo Server 8.1.8

Bamboo Server 8.2.0

Bamboo Server 8.2.4

Bamboo Data Center 8.0.9

Bamboo Data Center 8.1.0

Bamboo Data Center 8.1.8

Bamboo Data Center 8.2.0

Bamboo Data Center 8.2.4

Bitbucket Server 7.6.16

Bitbucket Server 7.7.0

Bitbucket Server 7.16.0

Bitbucket Server 7.17.8

Bitbucket Server 7.18.0

Bitbucket Server 7.19.5

Bitbucket Server 7.20.0

Bitbucket Server 7.20.2

Bitbucket Server 7.21.0

Bitbucket Server 7.21.2

Bitbucket Server 8.0.0

Bitbucket Server 8.1.0

Bitbucket Data Center 7.6.16

Bitbucket Data Center 7.7.0

Bitbucket Data Center 7.16.0

Bitbucket Data Center 7.17.8

Bitbucket Data Center 7.18.0

Bitbucket Data Center 7.19.5

Bitbucket Data Center 7.20.0

Bitbucket Data Center 7.20.2

Bitbucket Data Center 7.21.0

Bitbucket Data Center 7.21.2

Bitbucket Data Center 8.0.0

Bitbucket Data Center 8.1.0

Confluence Server 7.4.17

Confluence Server 7.5.0

Confluence Server 7.13.7

Confluence Server 7.14.0

Confluence Server 7.14.3

Confluence Server 7.15.0

Confluence Server 7.15.2

Confluence Server 7.16.0

Confluence Server 7.16.4

Confluence Server 7.17.0

Confluence Server 7.17.4

Confluence Server 7.18.0

Confluence Data Center 7.4.17

Confluence Data Center 7.5.0

Confluence Data Center 7.13.7

Confluence Data Center 7.14.0

Confluence Data Center 7.14.3

Confluence Data Center 7.15.0

Confluence Data Center 7.15.2

Confluence Data Center 7.16.0

Confluence Data Center 7.16.4

Confluence Data Center 7.17.0

Confluence Data Center 7.17.4

Confluence Data Center 7.18.0

Crowd Server 4.3.8

Crowd Server 4.4.0

Crowd Server 4.4.2

Crowd Server 5.0.0

Crowd Data Center 4.3.8

Crowd Data Center 4.4.0

Crowd Data Center 4.4.2

Crowd Data Center 5.0.0

Crucible 4.8.10

Fisheye 4.8.10

Jira Core Server 8.13.22

Jira Core Server 8.14.0

Jira Core Server 8.20.10

Jira Core Server 8.21.0

Jira Core Server 8.22.4

Jira Software Server 8.13.22

Jira Software Server 8.14.0

Jira Software Server 8.20.10

Jira Software Server 8.21.0

Jira Software Server 8.22.4

Jira Software Data Center 8.13.22

Jira Software Data Center 8.14.0

Jira Software Data Center 8.20.10

Jira Software Data Center 8.21.0

Jira Software Data Center 8.22.4

Jira Service Management Server 4.13.22

Jira Service Management Server 4.14.0

Jira Service Management Server 4.20.10

Jira Service Management Server 4.21.0

Jira Service Management Server 4.22.4

Jira Service Management Data Center 4.13.22

Jira Service Management Data Center 4.14.0

Jira Service Management Data Center 4.20.10

Jira Service Management Data Center 4.21.0

Jira Service Management Data Center 4.22.4

Prerequisites

Unknown

Discovered By

Unknown

PoC Author

Unknown

Metasploit Module

Unknown

Reporter

Unknown

Vendors

atlassian

Products

bamboo,
bitbucket,
bitbucket 8.0.0,
bitbucket 8.1.0,
confluence data center,
confluence data center 7.18.0,
confluence server,
confluence server 7.18.0,
crowd,
crowd 5.0.0,
crucible,
fisheye,
jira data center,
jira server,
jira service desk,
jira service management

References

Canonical

CVE-2022-26137 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26137)

Miscellaneous

https://jira.atlassian.com/browse/BAM-21795

https://jira.atlassian.com/browse/BSERV-13370

https://jira.atlassian.com/browse/CONFSERVER-79476

https://jira.atlassian.com/browse/CWD-5815

https://jira.atlassian.com/browse/FE-7410

https://jira.atlassian.com/browse/CRUC-8541

https://jira.atlassian.com/browse/JRASERVER-73897

https://jira.atlassian.com/browse/JSDSERVER-11863

Rapid7

Unknown

CVE-2022-26137

Unknown

Unknown

Required

None

Network

CVE-2022-26137

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Unknown

CVE-2022-26137

Unknown

Unknown

Required

None

Network

CVE-2022-26137

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification