CVE-2021-26074 - Broken authentication in Atlassian Connect Spring Boot (ACSB)

Articles

On this page

Still need help?

The Atlassian Community is here for you.

Ask the community

Description

Atlassian Connect Spring Boot is a Java Spring Boot package for building Atlassian Connect apps. Authentication between Atlassian products and the Atlassian Connect Spring Boot app occurs with a server-to-server JWT or a context JWT. Atlassian Connect Spring Boot versions between 1.1.0 - 2.1.2 erroneously accept context JWTs in lifecycle endpoints (such as installation) where only server-to-server JWTs should be accepted, permitting an attacker to send authenticated re-installation events to an app. This is fixed in version 2.1.3.

Affected versions

  • 1.1.0 - 2.1.2

Fixed versions

  • 2.1.3

Severity

This is an independent assessment and you should evaluate its applicability to your own IT environment.

CVSS v3 score: 9.1 => Critical severity

Exploitability Metrics

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredLow
User InteractionNone


Scope Metric

ScopeChanged


Impact Metrics

ConfidentialityHigh
IntegrityLow
AvailabilityLow

https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L


Last modified on May 7, 2021

Was this helpful?

Yes
No
Provide feedback about this article
Powered by Confluence and Scroll Viewport.