Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-57974

Remote code execution via Widget Connector macro - CVE-2019-3396

XMLWordPrintable

      There was a server-side template injection vulnerability in Confluence Server and Data Center, in the Widget Connector. An attacker is able to exploit this issue to achieve path traversal and remote code execution on systems that run a vulnerable version of Confluence Server or Data Center.

       

      Affected versions:

      All versions of Confluence Server and Confluence Data Center before version 6.6.12, from version 6.7.0 before 6.12.3 (the fixed version for 6.12.x), from version 6.13.0 before 6.13.3 (the fixed version for 6.13.x) and from version 6.14.0 before 6.14.2 (the fixed version for 6.14.x).

       

      Fix:

       

      For additional details, see the full advisory: https://confluence.atlassian.com/display/DOC/Confluence+Security+Advisory+-+2019-03-20

       

            [CONFSERVER-57974] Remote code execution via Widget Connector macro - CVE-2019-3396

            Matt Jones made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 922344 ]
            Eric Franklin (Inactive) made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 847668 ]
            Eric Franklin (Inactive) made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 846203 ]
            set-jac-bot made changes -
            Fixed in Enterprise Release/s New: [Download 6.6, 6.13|https://confluence.atlassian.com/enterprise/atlassian-enterprise-releases-948227420.html]
            Duy Truong Luong made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 482312 ]
            Said made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 471327 ]
            Richard Atkins made changes -
            Labels Original: CVE-2019-3396 advisory advisory-released bugbounty cvss-critical security template-injection New: CVE-2019-3396 advisory advisory-released bugbounty cvss-critical injection security template-injection
            David Black made changes -
            Labels Original: CVE-2019-3396 advisory advisory-to-release bugbounty cvss-critical security template-injection New: CVE-2019-3396 advisory advisory-released bugbounty cvss-critical security template-injection
            nma (Inactive) made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 438908 ]
            Quan Pham made changes -
            Fix Version/s New: 6.10.3 [ 86394 ]

              dluong Duy Truong Luong
              security-metrics-bot Security Metrics Bot
              Affected customers:
              0 This affects my team
              Watchers:
              34 Start watching this issue

                Created:
                Updated:
                Resolved: