-
Bug
-
Resolution: Fixed
-
Low
-
7.3.3
-
Severity 2 - Major
-
Affected versions of Atlassian Confluence Server and Data Center allowed remote attackers with system administration permissions to bypass velocity template injection mitigations via an injection vulnerability in custom user macros.
This issue was discovered and reported by GHSL team member @pwntester (Alvaro Munoz).
The affected versions are before version 7.4.5, and from version 7.5.0 before 7.5.1.
Affected versions:
- version < 7.4.5
- 7.5.0 ≤ version < 7.5.1
Fixed versions:
- 7.4.5
- 7.5.1
[CONFSERVER-59898] Velocity Template Injection in Custom user macros - Macros Platform - CVE-2020-4027
| Remote Link | New: This issue links to "Page (Confluence)" [ 647679 ] |
| Remote Link | New: This issue links to "Page (Confluence)" [ 568776 ] |
| Description |
Original:
Atlassian Confluence Server and Data Center before version 7.5.1 allowed remote attackers with system administration permissions to bypass velocity template injection mitigations via an injection vulnerability in custom user macros.
This issue was discovered and reported by GHSL team member [@pwntester (Alvaro Munoz)|https://github.com/github/securitylab_vulnerabilities/blob/master/vendor_reports/https/github.com/pwntester]. The affected versions are before version 7.4.5, and from version 7.5.0 before 7.5.1. *Affected versions:* * version < 7.4.5 * 7.5.0 ≤ version < 7.5.1 *Fixed versions:* * 7.4.5 * 7.5.1 |
New:
Affected versions of Atlassian Confluence Server and Data Center allowed remote attackers with system administration permissions to bypass velocity template injection mitigations via an injection vulnerability in custom user macros.
This issue was discovered and reported by GHSL team member [@pwntester (Alvaro Munoz)|https://github.com/github/securitylab_vulnerabilities/blob/master/vendor_reports/https/github.com/pwntester]. The affected versions are before version 7.4.5, and from version 7.5.0 before 7.5.1. *Affected versions:* * version < 7.4.5 * 7.5.0 ≤ version < 7.5.1 *Fixed versions:* * 7.4.5 * 7.5.1 |
| Description |
Original:
Atlassian Confluence Server and Data Center before version 7.5.1 allowed remote attackers with system administration permissions to bypass velocity template injection mitigations via an injection vulnerability in custom user macros.
This issue was discovered and reported by GHSL team member [@pwntester (Alvaro Munoz)|https://github.com/github/securitylab_vulnerabilities/blob/master/vendor_reports/https/github.com/pwntester]. *Affected versions:* * version < 7.5.1 *Fixed versions:* * 7.5.1 |
New:
Atlassian Confluence Server and Data Center before version 7.5.1 allowed remote attackers with system administration permissions to bypass velocity template injection mitigations via an injection vulnerability in custom user macros.
This issue was discovered and reported by GHSL team member [@pwntester (Alvaro Munoz)|https://github.com/github/securitylab_vulnerabilities/blob/master/vendor_reports/https/github.com/pwntester]. The affected versions are before version 7.4.5, and from version 7.5.0 before 7.5.1. *Affected versions:* * version < 7.4.5 * 7.5.0 ≤ version < 7.5.1 *Fixed versions:* * 7.4.5 * 7.5.1 |
Can someone from Atlassian ensure that the CVE is updated, as it shows that the only fix is in 7.5.1? I have to explain the outstanding CVE details against our 7.4.6 instance.
| Assignee | New: Ganesh Gautam [ ggautam ] |
| Remote Link | New: This issue links to "Page (Extranet)" [ 513558 ] |
If you're running the Confluence 7.4 Enterprise release, a fix for this issue is now available in Confluence 7.4.5, which you can find in the Download Archives.
| Remote Link | New: This issue links to "Page (Confluence)" [ 506138 ] |
@Ganesh Gautam,
I assume the fixed versions are:
Could you please confirm and update the CVE?
Thanks,Steven