Lucene search

AtlassianCVE-2019-15001

HistorySep 19, 2019 - 3:15 p.m.

CVE-2019-15001

2019-09-1915:15:15

CWE-94

atlassian

web.nvd.nist.gov

192

jira

importers plugin

atlassian

jira server

data center

cve-2019-15001

remote code execution

template injection

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

High

EPSS

0.016

Percentile

87.6%

JSON

The Jira Importers Plugin in Atlassian Jira Server and Data Cente from version with 7.0.10 before 7.6.16, from 7.7.0 before 7.13.8, from 8.0.0 before 8.1.3, from 8.2.0 before 8.2.5, from 8.3.0 before 8.3.4 and from 8.4.0 before 8.4.1 allows remote attackers with Administrator permissions to gain remote code execution via a template injection vulnerability through the use of a crafted PUT request.

Affected configurations

Nvd

Node

atlassianjira_serverRange7.0.10–7.6.16

atlassianjira_serverRange7.7.0–7.13.8

atlassianjira_serverRange8.0.0–8.1.3

atlassianjira_serverRange8.2.0–8.2.5

atlassianjira_serverRange8.3.0–8.3.4

atlassianjira_serverMatch8.4.0

Node

atlassianjira_data_centerRange7.0.10–7.6.16

atlassianjira_data_centerRange7.7.0–7.13.8

atlassianjira_data_centerRange8.0.0–8.1.3

atlassianjira_data_centerRange8.2.0–8.2.5

atlassianjira_data_centerRange8.3.0–8.3.4

atlassianjira_data_centerMatch8.4.0

VendorProductVersionCPE
atlassianjira_server*cpe:2.3:a:atlassian:jira_server:*:*:*:*:*:*:*:*
atlassianjira_server8.4.0cpe:2.3:a:atlassian:jira_server:8.4.0:*:*:*:*:*:*:*
atlassianjira_data_center*cpe:2.3:a:atlassian:jira_data_center:*:*:*:*:*:*:*:*
atlassianjira_data_center8.4.0cpe:2.3:a:atlassian:jira_data_center:8.4.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
atlassian	jira_server	*	cpe:2.3:a:atlassian:jira_server::::::::
atlassian	jira_server	8.4.0	cpe:2.3:a:atlassian:jira_server:8.4.0:::::::*
atlassian	jira_data_center	*	cpe:2.3:a:atlassian:jira_data_center::::::::
atlassian	jira_data_center	8.4.0	cpe:2.3:a:atlassian:jira_data_center:8.4.0:::::::*

CNA Affected

[
  {
    "product": "Jira Server",
    "vendor": "Atlassian",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "7.0.10",
        "versionType": "custom"
      },
      {
        "lessThan": "7.6.16",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "7.7.0",
        "versionType": "custom"
      },
      {
        "lessThan": "7.13.8",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "8.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.1.3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "8.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.2.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "8.3.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.3.4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "8.4.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.4.1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Jira Data Center",
    "vendor": "Atlassian",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "7.0.10",
        "versionType": "custom"
      },
      {
        "lessThan": "7.6.16",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "7.7.0",
        "versionType": "custom"
      },
      {
        "lessThan": "7.13.8",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "8.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.1.3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "8.2.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.2.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "8.3.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.3.4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "8.4.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.4.1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

packetstormsecurity.com/files/154611/Jira-Server-Data-Center-Template-Injection.html

jira.atlassian.com/browse/JRASERVER-69933

seclists.org/bugtraq/2019/Sep/42

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

High

EPSS

0.016

Percentile

87.6%

JSON

Related for CVE-2019-15001