Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-39960

Published: 17/09/2022 Updated: 21/09/2022
CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Netic

Vulnerability Summary

The Netic Group Export add-on prior to 1.0.3 for Atlassian Jira does not perform authorization checks. This might allow an unauthenticated user to export all groups from the Jira instance by making a groupexport_download=true request to a plugins/servlet/groupexportforjira/admin/ URI.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

netic group export

Vendor Advisories

Check Point Security Alerts: Netic Group Export Authentication Bypass (CVE-2022-39960)
Check Point Reference: CPAI-2022-1995 Date Published: 25 Jan 2024 Severity: Medium ...

References

CWE-862https://gist.github.com/CveCt0r/ca8c6e46f536e9ae69fc6061f132463ehttps://marketplace.atlassian.com/apps/1222388/group-export-for-jira/version-historyhttps://nvd.nist.govhttps://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2022-1995.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook