InfoSecBulletin Cybersecurity for mankind
A threat offer to sell a zero-day exploit for Atlassian’s Jira in a underground forum. This exploit can be used on the latest version of Jira desktop app and Jira integrated with Confluence. According to the offer, It does not require any login credentials and can also work with Okta Single Sign-On (SSO), making it more impactful.
DailyDarkweb reported the details of the Offer:
CVE-2023-37936
Fortinet released update for a critical cryptographic key vuln
Millions of Accounts Vulnerable due to Google’s OAuth Flaw
CISA Adds Second BeyondTrust Flaw to KEV On Active Attacks
Abusing AWS features: Ransomware Encrypting S3 Buckets
$12.9 B Cybersecurity Boom Awaits India for 2030
Emerging Phishing Threat in Bangladesh’s Cyber Space
Fake LDAPNightmware exploit on GitHub spreads malware
Alert! Fake Crowdstrike Recruitment Emails Spread XMRig cryptominer
Facebook awards researcher $100,000 to find bug allowing internal access
Top 4 Malware you have to Prepare for in 2025
Exploit Type: Zero-day Remote Code Execution (RCE)
Target: Atlassian Jira (latest desktop version and integrated with Confluence)
Login Requirement: None
SSO Compatibility: Okta SSO
Price: 800,000 XMR (Monero)
If the claim to be true, this exploit is a major security threat due to the widespread use of Jira and Confluence in corporate environments for project management and collaboration.
(Media Disclaimer: This report is based on research conducted internally and externally using different ways. The information provided is for reference only, and users are responsible for relying on it. Infosecbulletin is not liable for the accuracy or consequences of using this information by any means)
