28. June 2021

This article has been indexed from E Hacking News – Latest Hacker News and IT Security News

On Wednesday 23rd of June, cyber-security experts uncovered key vulnerabilities in the Atlassian project and software development platform that might have been exploited to take over the account and control certain apps connected via its single sign-on (SSO) capabilities. 

The vulnerabilities are due to Atlassian using SSO to ensure the uninterrupted navigation of the above-mentioned domains, thereby attempting to create a possible attack scenario involving the use of XSS and CSRF to inject malicious code into the portal and leveraging a session fixation error in the event of a valid user session. Though these vulnerabilities have been patched. 

On January 08, 2021, the Australian company delivered a patch for its upgrades, after Atlassian was notified of the problem. The issues in the sub-domains include – 

jira.atlassian.com 

confluence.atlassian.com 

getsupport.atlassian.com 

partners.atlassian.com 

developer.atlassian.com 

support.atlassian.com 

training.atlassian.com 

“With just one click, an attacker could have used the flaws to get access to Atlassian’s to publish Jira system and get sensitive information, such as security issues on Atlassian cloud, Bitbucket, and on-premise products,” Check Point Research stated.