• Type: Bug
• Resolution: Fixed
• Priority: Medium
• Fix Version/s: 6.1.3
• Affects Version/s: 5.9.12, 6.0.7, 6.1.1, 6.1.2
• Component/s: Integrations - Jira
• Labels:

  • CVE-2017-9506
  • advisory
  • advisory-released
  • security
  • ssrf
  • xss

1. atlassian-oauth-service-provider-plugin-2.0.4.jar

   206 kB

   12/Feb/2018 11:18 AM

[CONFSERVER-53362] The bundled Atlassian OAuth plugin allows arbitrary HTTP requests to be proxied - CVE-2017-9506

Collapse comment: John Bartelt added a comment - 05/Sep/2018 6:05 PM, Edited by John Bartelt - 05/Sep/2018 6:10 PM

John Bartelt added a comment - 05/Sep/2018 6:05 PM - edited

Is there a workaround for confluence 5.8.18?  It has atlassian-oauth-service-provider-plugin-1.9.10.jar .

Edited:  Where do I find version 1.9.12?

 

Expand comment: John Bartelt added a comment - 05/Sep/2018 6:05 PM, Edited by John Bartelt - 05/Sep/2018 6:10 PM

John Bartelt added a comment - 05/Sep/2018 6:05 PM - edited Is there a workaround for confluence 5.8.18?  It has atlassian-oauth-service-provider-plugin-1.9.10.jar . Edited:  Where do I find version 1.9.12?  

Collapse comment: Marcelo Horlle added a comment - 12/Feb/2018 11:20 AM

Marcelo Horlle added a comment - 12/Feb/2018 11:20 AM

Workaround for Confluence - In case you can't upgrade yet to 6.1.3:

1. Shutdown Confluence.
2. Go to <Confluence-Installation-Directory>/confluence/WEB-INF/atlassian-bundled-plugins and find the atlassian-oauth-service-provider-plugin-2.0.2.jar file.
3. Delete it.
4. Download below file, which is the atlassian-oauth-service-provider-plugin-2.0.4.jar file for Confluence:
   atlassian-oauth-service-provider-plugin-2.0.4.jar
5. Paste it inside <Confluence-Installation-Directory>/confluence/WEB-INF/atlassian-bundled-plugins folder.
6. Clear plugin cache.
7. Bring Confluence back online.

Expand comment: Marcelo Horlle added a comment - 12/Feb/2018 11:20 AM

Marcelo Horlle added a comment - 12/Feb/2018 11:20 AM Workaround for Confluence - In case you can't upgrade yet to 6.1.3: Shutdown Confluence. Go to <Confluence-Installation-Directory>/confluence/WEB-INF/atlassian-bundled-plugins and find the atlassian-oauth-service-provider-plugin-2.0.2.jar file. Delete it. Download below file, which is the atlassian-oauth-service-provider-plugin-2.0.4.jar file for Confluence: atlassian-oauth-service-provider-plugin-2.0.4.jar Paste it inside <Confluence-Installation-Directory>/confluence/WEB-INF/atlassian-bundled-plugins folder. Clear plugin cache . Bring Confluence back online.

Collapse comment: David Black added a comment - 30/Aug/2017 2:09 AM

David Black added a comment - 30/Aug/2017 2:09 AM

CVSS v3 score: 6.1 => Medium severity

Exploitability Metrics

Attack Vector	Network
Attack Complexity	Low
Privileges Required	None
User Interaction	Required

Scope Metric

Scope	Changed

Impact Metrics

Confidentiality	Low
Integrity	Low
Availability	None

Expand comment: David Black added a comment - 30/Aug/2017 2:09 AM

David Black added a comment - 30/Aug/2017 2:09 AM CVSS v3 score: 6.1 => Medium severity Exploitability Metrics Attack Vector Network Attack Complexity Low Privileges Required None User Interaction Required Scope Metric Scope Changed Impact Metrics Confidentiality Low Integrity Low Availability None