Proof-of-Concept Available for Atlassian Crowd Remote Code Execution Vulnerability

On July 14, security researcher Corben Leo published a blog detailing the analysis of CVE-2019-11580, a vulnerability in Atlassian Crowd, a user management application for access control for Active Directory (AD), Lightweight Directory Access Protocol (LDAP), OpenLDAP and Microsoft Azure AD. Atlassian published a security advisory on May 22 providing details about the vulnerability. According to the advisory, a remote unauthenticated or authenticated attacker could exploit the vulnerability to install arbitrary plugins on vulnerable Crowd or Crowd Data Center instances, resulting in remote code execution. In Leo’s analysis, he provided details on how he identified the vulnerability and provided a proof-of-concept (PoC) for it on his blog.

To learn more, please visit our blog.