This vulnerability, if exploited, allows an attacker to perform privileged RCE (Remote Code Execution) on machines with the Assets Discovery agent installed. The vulnerability exists between the Assets Discovery application (formerly known as Insight Discovery) and the Assets Discovery agent.
References
Link | Resource |
---|---|
https://confluence.atlassian.com/security/cve-2023-22523-rce-vulnerability-in-assets-discovery-1319248914.html | Vendor Advisory |
https://jira.atlassian.com/browse/JSDSERVER-14925 | Issue Tracking Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
11 Dec 2023, 18:29
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:atlassian:assets_discovery_cloud:*:*:*:*:*:*:*:* cpe:2.3:a:atlassian:assets_discovery_data_center:*:*:*:*:*:*:*:* cpe:2.3:a:atlassian:assets_discovery_data_server:*:*:*:*:*:*:*:* |
|
References | () https://jira.atlassian.com/browse/JSDSERVER-14925 - Issue Tracking, Vendor Advisory | |
References | () https://confluence.atlassian.com/security/cve-2023-22523-rce-vulnerability-in-assets-discovery-1319248914.html - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
First Time |
Atlassian assets Discovery Cloud
Atlassian assets Discovery Data Center Atlassian Atlassian assets Discovery Data Server |
|
CWE | NVD-CWE-noinfo |
06 Dec 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
06 Dec 2023, 13:50
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | This vulnerability, if exploited, allows an attacker to perform privileged RCE (Remote Code Execution) on machines with the Assets Discovery agent installed. The vulnerability exists between the Assets Discovery application (formerly known as Insight Discovery) and the Assets Discovery agent. |
06 Dec 2023, 05:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-12-06 05:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-22523
Mitre link : CVE-2023-22523
CVE.ORG link : CVE-2023-22523
JSON object : View
Products Affected
atlassian
- assets_discovery_data_server
- assets_discovery_data_center
- assets_discovery_cloud
CWE