Authentication Bypass in Atlassian Jira (CVE-2022-0540)

Posted on April 20, 2022 in Services & System Applications

An authentication bypass vulnerability has been found in Atlassian Jira. This issue can be exploited in the default configuration, and has been assigned a bug alert severity of 'very high'.


Continue reading

Unauthenticated user impersonation (auth bypass) in SAP

Posted on February 08, 2022 in Services & System Applications

A request smuggling issue in SAP NetWeaver, SAP Content Server, and SAP Web Dispatcher allows unauthenticated user impersonation. These systems are commonly Internet-facing. The flaw has been assigned a bug alert severity of 'critical', and the vendor has supplied patches.


Continue reading

Placeholder for the Services & System Applications Category

Posted on December 01, 2021 in Services & System Applications


Continue reading