Vulnerabilities > CVE-2024-48941 - Unspecified vulnerability in Syracom Secure Login 3.1.1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows remote attackers to bypass 2FA by interacting with the /rest endpoint of Jira, Confluence, or Bitbucket. In the default configuration, /rest is allowlisted.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |