Microsoft SSO Plugin for Jira and Confluence Privilege Escalation Vulnerability

A vulnerability exists in the Microsoft SSO Plugin for Jira and Confluence due to an incorrect implementation of the authentication algorithm. This flaw allows an unauthorized attacker to elevate privileges by bypassing authentication and gaining access to these applications as a legitimate user. The vulnerability affects users over a network and could be exploited by sending a specially crafted SSO response during the login process, deceiving the system into accepting a forged identity.

Impact

Successful exploitation allows an attacker to bypass authentication and gain unauthorized access to Jira or Confluence as a valid user. This could enable the attacker to view or modify content and perform actions based on the permissions of the compromised account.

Remediation

Users can download the security update for the Microsoft Confluence SAML SSO plugin from the Microsoft Download Center. For the Microsoft JIRA SAML SSO plugin, the security update is available through the Microsoft Download Center or the Atlassian Marketplace.