GSD-2023-22523 — Vulnetix

GSD-2023-22523 PUBLISHED CVSS 9.800000190734863 CRITICAL

This vulnerability, if exploited, allows an attacker to perform privileged RCE (Remote Code Execution) on machines with the Assets Discovery agent installed. The vulnerability exists between the Assets Discovery application (formerly known as Insight Discovery) and the Assets Discovery agent.

Risk Scores

CVSS v3.0

9.800000190734863

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Atlassian	Assets Discovery Cloud	*, >= 1.8.0.0, >= 1.8.1.2
Atlassian	Assets Discovery Data Center	>= 3.1.11, >= 3.1.2, >= 3.1.3

Timeline

Apr 22, 2026 CVE Published

References

https://confluence.atlassian.com/security/cve-2023-22523-rce-vulnerability-in-assets-discovery-1319248914.html url
https://jira.atlassian.com/browse/JSDSERVER-14925 url

Open in Interactive Console →