Lucene search

K
hackeroneR4d1kalH1:988550
HistorySep 22, 2020 - 7:07 p.m.

U.S. Dept Of Defense: Sensitive data exposure via https://████████.mil/secure/QueryComponent!Default.jspa - CVE-2020-14179

2020-09-2219:07:15
r4d1kal
hackerone.com
309

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

68.5%

Summary:
Information Disclosure vulnerability in outdated Jira.

Description:
Affected versions of Atlassian Jira Server and Data Center allow remote, unauthenticated attackers to view custom field names and custom SLA names via an Information Disclosure vulnerability in the /secure/QueryComponent!Default.jspa endpoint.
Additional details from Atlassian and related CVE-2020-14179

Screenshot: ██████████
JSON output of exposed information: █████

Step-by-step Reproduction Instructions

  1. Visit URL: https://█████████.mil/secure/QueryComponent!Default.jspa to view exposed information in any web browser.

Product, Version, and Configuration (If applicable)

The affected versions are before version 8.5.8, and from version 8.6.0 before 8.11.1.
Your currently instilled version is 8.11.0 which is displayed in page source - screenshot █████████

Suggested Mitigation/Remediation Actions

Update affected Jira version according to vendor instructions.

Thank you.

Impact

Unauthenticated attackers to view custom Jira field names and custom SLA names.

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

68.5%