Skip to content

Atlassian has patched a critical Jira authentication flaw

Hands typing on a keyboard surrounded by security icons


Atlassian has revealed it has fixed a major flaw in its service management server and data center products.

The vulnerability, tracked as CVE-2023-22501, allows threat actors to impersonate people and gain access to a Jira Service Management instance under certain circumstances. It has been given a severity score of 9.4, making it a critical flaw.