[CONFSERVER-56238] The bundled Atlassian Universal Plugin Manager plugin had a XXE issue - CVE-2018-20233 - Create and track feature requests for Atlassian products.

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 6.12.0
Affects Version/s: CQ-2.6.6
Component/s: Universal Plugin Manager / Manage apps
Labels:

Symptom Severity:
Severity 1 - Critical
Bug Fix Policy:
View Atlassian Server bug fix policy

The version of the bundled Atlassian Universal Plugin Manager plugin had a XML External Entity vulnerability that allowed remote attackers with system administrator privileges to read files, make network requests and perform a denial of service attack via an XML External Entity vulnerability in the parsing of atlassian plugin xml files in an uploaded JAR. See https://ecosystem.atlassian.net/browse/UPM-5964 for more details.

is related to

JRASERVER-67723 The bundled Atlassian Universal Plugin Manager plugin had a XXE issue - CVE-2018-20233

Closed

UPM-5903 Failed to load

relates to

PSR-126 You do not have permission to view this issue

PSR-172 You do not have permission to view this issue

UPM-5964 XXE in the add-on JAR upload resource - CVE-2018-20233

Done

Minh Tran added a comment - 02/Oct/2018 3:59 AM

A fix for this issue is available to Server and Data Center customers in Confluence 6.12.0
Upgrade now or check out the Release Notes to see what other issues are resolved.

Minh Tran added a comment - 02/Oct/2018 3:59 AM A fix for this issue is available to Server and Data Center customers in Confluence 6.12.0 Upgrade now or check out the Release Notes to see what other issues are resolved.

Security Metrics Bot added a comment - 07/Aug/2018 4:20 AM - edited

This is an independent assessment and you should evaluate its applicability to your own IT environment.
CVSS v3 score: 5.5 => Medium severity

Exploitability Metrics

Attack Vector	Network
Attack Complexity	Low
Privileges Required	High
User Interaction	None

Scope Metric

Scope	Changed

Impact Metrics

Confidentiality	Low
Integrity	None
Availability	Low

https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:L

Security Metrics Bot added a comment - 07/Aug/2018 4:20 AM - edited This is an independent assessment and you should evaluate its applicability to your own IT environment. CVSS v3 score: 5.5 => Medium severity Exploitability Metrics Attack Vector Network Attack Complexity Low Privileges Required High User Interaction None Scope Metric Scope Changed Impact Metrics Confidentiality Low Integrity None Availability Low https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:L

Assignee:: Alex Yakovlev (Inactive)

Reporter:: Security Metrics Bot

Affected customers:: 0 This affects my team

Watchers:: 2 Start watching this issue

Created:: 07/Aug/2018 4:20 AM

Updated:: 01/Jun/2023 11:50 PM

Resolved:: 30/Aug/2018 11:33 PM

Confluence Data Center

Details

Description

Attachments

Issue Links

Forms

Activity

[CONFSERVER-56238] The bundled Atlassian Universal Plugin Manager plugin had a XXE issue - CVE-2018-20233

Collapse comment: Minh Tran added a comment - 02/Oct/2018 3:59 AM

Expand comment: Minh Tran added a comment - 02/Oct/2018 3:59 AM

Collapse comment: Security Metrics Bot added a comment - 07/Aug/2018 4:20 AM, Edited by Security Metrics Bot - 17/Jan/2019 3:39 AM

Expand comment: Security Metrics Bot added a comment - 07/Aug/2018 4:20 AM, Edited by Security Metrics Bot - 17/Jan/2019 3:39 AM

People

Dates