CVE-2024-21682

Name of the Vulnerable Software and Affected Versions Assets Discovery versions 1.0 through 6.2.0

Description This issue allows an authenticated attacker to modify system calls, potentially impacting confidentiality, integrity, and availability. It requires no user interaction. Assets Discovery is a network scanning tool used with Jira Service Management Cloud, Data Center, or Server to detect and extract information about hardware and software on the local network.

Recommendations For versions 1.0 through 6.2.0, upgrade to the latest version of Assets Discovery. If upgrading is not possible, upgrade your instance to one of the specified supported fixed versions. As a temporary workaround, consider restricting access to the vulnerable components of Assets Discovery until a patch is available.