Lucene search

K

RedhatCVELIST:CVE-2010-1165

HistoryApr 20, 2010 - 3:00 p.m.

CVE-2010-1165

2010-04-2015:00:00

redhat

www.cve.org

3

AI Score

7.3

Confidence

High

EPSS

0.024

Percentile

89.9%

Atlassian JIRA 3.12 through 4.1 allows remote authenticated administrators to execute arbitrary code by modifying the (1) attachment (aka attachments), (2) index (aka indexing), or (3) backup path and then uploading a file, as exploited in the wild in April 2010.

References

confluence.atlassian.com/display/JIRA/JIRA+Security+Advisory+2010-04-16

jira.atlassian.com/browse/JRA-20995

jira.atlassian.com/browse/JRA-21004

secunia.com/advisories/39353

www.openwall.com/lists/oss-security/2010/04/16/3

www.openwall.com/lists/oss-security/2010/04/16/4

www.securityfocus.com/bid/39485

exchange.xforce.ibmcloud.com/vulnerabilities/57828

AI Score

7.3

Confidence

High

EPSS

0.024

Percentile

89.9%

Related for CVELIST:CVE-2010-1165

prion1 nvd1 cve1 openvas1 nessus1