CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-38367

The Netic User Export add-on before 2.0.6 for Atlassian Jira does not perform authorization checks. This might allow an unauthenticated user to export all users from Jira by making an HTTP request to the affected endpoint.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.4%

CVSS Severity

CVSS v3 Score 5.3

References

https://gist.github.com/CveCt0r/72a0b6292cd8d80499cf5971ae58147f
https://marketplace.atlassian.com/apps/1220535/user-export-for-jira
https://gist.github.com/CveCt0r/72a0b6292cd8d80499cf5971ae58147f
https://marketplace.atlassian.com/apps/1220535/user-export-for-jira

Products affected by CVE-2022-38367

Netic » User Export For Jira » Version: Any

cpe:2.3:a:netic:user_export_for_jira:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-38367

Products

Pricing

Contact Us