Vulnerability Details : CVE-2021-26073
Broken Authentication in Atlassian Connect Express (ACE) from version 3.0.2 before version 6.6.0: Atlassian Connect Express is a Node.js package for building Atlassian Connect apps. Authentication between Atlassian products and the Atlassian Connect Express app occurs with a server-to-server JWT or a context JWT. Atlassian Connect Express versions from 3.0.2 before 6.6.0 erroneously accept context JWTs in lifecycle endpoints (such as installation) where only server-to-server JWTs should be accepted, permitting an attacker to send authenticated re-installation events to an app.
Vulnerability category: BypassGain privilege
Products affected by CVE-2021-26073
- cpe:2.3:a:atlassian:connect_express:*:*:*:*:*:node.js:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-26073
0.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 28 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-26073
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.0
|
MEDIUM | AV:N/AC:L/Au:S/C:N/I:P/A:N |
8.0
|
2.9
|
NIST | |
7.7
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N |
3.1
|
4.0
|
NIST |
CWE ids for CVE-2021-26073
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2021-26073
-
https://community.developer.atlassian.com/t/action-required-atlassian-connect-vulnerability-a[…]ypass-of-app-qsh-verification-via-context-jwts/47072
Action required: Atlassian Connect vulnerability allows bypass of app qsh verification via context JWTs - Announcements - The Atlassian Developer CommunityIssue Tracking;Vendor Advisory
-
https://security.netapp.com/advisory/ntap-20210604-0004/
CVE-2021-26073 Node.JS Vulnerability in NetApp Products | NetApp Product SecurityThird Party Advisory
-
https://confluence.atlassian.com/pages/viewpage.action?pageId=1051986099
CVE-2020-26073 - Broken authentication in Atlassian Connect Express (ACE) - Security - Atlassian DocumentationVendor Advisory
Jump to