CVE-2022-36802
CVSS Score
4.9
EPSS Score
0.0%
EPSS Percentile
0th
The ManageJiraConnectors API in Atlassian Jira Align before version 10.109.2 allows remote attackers to exploit this issue to access internal network resources via a Server-Side Request Forgery. This can be exploited by a remote, unauthenticated attacker with Super Admin privileges by sending a specially crafted HTTP request.
| Vendor | atlassian |
| Product | jira align |
| Ecosystems | |
| Industries | TechnologyEnterprise |
| Published | Oct 14, 2022 |
| Last Updated | Oct 29, 2024 |
Stay Ahead of the Next One
Get instant alerts for atlassian jira align
Be the first to know when new medium vulnerabilities affecting atlassian jira align are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Atlassian / Jira Align
unspecified < 10.109.2