Bleeping Computer

Atlassian fixes critical Jira authentication bypass vulnerability

Atlassian has published a security advisory to alert that its Jira and Jira Service Management products are affected by a critical authentication bypass vulnerability in Seraph, the company's web ...
TechRadar

Atlassian patches serious Jira authentication flaw

Atlassian has revealed it has fixed a major flaw in their Service Management Server and Data Center products. The vulnerability, tracked as CVE-2023-22501, allows threat actors to impersonate people ...
Infosecurity-magazine.com

Atlassian Patches Critical Authentication Flaw in Jira Software

Atlassian has released multiple patches to fix a critical security vulnerability in Jira Service Management Server and Data Center. The flaw (tracked CVE-2023-22501) has a CVSS score of 9.4 and can ...
IT News For Australia Business

Atlassian patches Jira authentication vulnerability

Atlassian has moved to plug a critical authentication bug in its Jira service management server and Jira data centre software. According to the company’s advisory ...
Bleeping Computer

Bitbucket artifact files can leak plaintext authentication secrets

Update 5/21/24: Added Atlassian statement to the bottom of the article. Threat actors were found breaching AWS accounts using authentication secrets leaked as plaintext in Atlassian Bitbucket artifact ...
Ars Technica

Critical vulnerability in Atlassian Confluence server is under “mass exploitation”

A critical vulnerability in Atlassian’s Confluence enterprise server app that allows for malicious commands and resets servers is under active exploitation by threat actors in attacks that install ...