Security-metrics-botJRASERVER-69793SSRF in the /plugins/servlet/gadgets/makeRequest resource - CVE-2019-8451
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
6.5 Medium
AI Score
Confidence
High
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.971 High
EPSS
Percentile
99.8%
The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vulnerability due to a logic bug in the JiraWhitelist class.
Important Note: The patch is deployed in fix versions and later by configuring the [Jira URL allow list.|https://confluence.atlassian.com/adminjiraserver/configuring-the-allowlist-1014667309.html] N.B: The allowlist is enabled by default (without any URL’s defined). However the fixed versions will be vulnerable if allowlist is disabled by the administrator.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jira data center | le | 7.6.9 | |
| jira data center | le | 8.1.0 | |
| jira data center | le | 8.0.2 | |
| jira data center | lt | 8.4.0 | |
| jira data center | lt | 7.6.17 | |
| jira data center | lt | 7.13.9 |
Related
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
6.5 Medium
AI Score
Confidence
High
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.971 High
EPSS
Percentile
99.8%