Lucene search

K
atlassianSecurity-metrics-botJRASERVER-73067
HistoryNov 30, 2021 - 6:48 p.m.

Email Template Injection to RCE - CVE-2021-43947

2021-11-3018:48:53
security-metrics-bot
jira.atlassian.com
26

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

9 High

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

57.6%

Affected versions of Atlassian Jira Server and Data Center allow remote attackers with administrator privileges to execute arbitrary code via a Remote Code Execution (RCE) vulnerability in the Email Templates feature.

This issue bypasses the fix of https://jira.atlassian.com/browse/JSDSERVER-8665.

This issue was discovered by tuo4n8Β from RedTeam@VNG Corporation.

The affected versions are before version 8.13.15, and from version 8.14.0 before 8.20.3.

Affected versions:

  • version < 8.13.15
  • 8.14.0 ≀ version < 8.20.3

Fixed versions:

  • 8.13.15
  • 8.20.3
  • 8.21.0

Affected configurations

Vulners
Node
atlassianjira_data_centerRange≀8.20.1
OR
atlassianjira_data_centerRange≀8.13.14
OR
atlassianjira_data_centerRange<8.21.0
OR
atlassianjira_data_centerRange<8.13.15
OR
atlassianjira_data_centerRange<8.20.3

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

9 High

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

57.6%

Related for JRASERVER-73067