[CONFSERVER-61266] Persistent XSS through Team Calendar in Confluence Server - CVE-2020-29444 - Create and track feature requests for Atlassian products.

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: TC-6.1.8, TC-7.0.7, 7.11.0
Affects Version/s: 7.4.4, 7.9.0
Component/s: None
Labels:

CVSS Score:
5.4
CVSS Severity:
Medium
CVE ID:
CVE-2020-29444

Affected versions of Team Calendar in Confluence Server allow attackers to inject arbitrary HTML or Javascript via a Cross Site Scripting vulnerability in admin global setting parameters.

Affected versions:

< 7.11.0

Fixed version:

7.11.0

This vulnerability is attributed to Stefano Castilletti, a security researcher from Apple.

mentioned in: Page Failed to load

Mandeep Jadon made changes - 21/Feb/2023 3:40 PM

Remote Link

New: This issue links to "Page (Confluence)" [ 733522 ]

simon.r.martin added a comment - 27/Jul/2022 10:27 PM

Is this fixed by 7.4.17?

simon.r.martin added a comment - 27/Jul/2022 10:27 PM Is this fixed by 7.4.17?

Security Metrics Bot made changes - 16/Sep/2021 5:28 AM

CVE ID

New: CVE-2020-29444

Sreekanth added a comment - 06/Sep/2021 2:59 AM

We recently upgraded Confluence to version 7.13.0 as proposed in the Atlassian Security Advisory. But our scans still shows 1 vulnerability which will be fixed when the Instance is upgraded to 7.11.0!? Below is the solution proposed from our scans.

Published: 2021-05-07T00:00:00Z

Last updated: 2021-06-03T09:10:26.000Z

Atlassian Confluence

Upgrade Atlassian Confluence to version 7.11.0

Upgrade Atlassian Confluence to version 7.11.0 from https://www.atlassian.com/software/confluence/download-archives

Pls suggest!

Sreekanth added a comment - 06/Sep/2021 2:59 AM We recently upgraded Confluence to version 7.13.0 as proposed in the Atlassian Security Advisory. But our scans still shows 1 vulnerability which will be fixed when the Instance is upgraded to 7.11.0!? Below is the solution proposed from our scans. Published: 2021-05-07T00:00:00Z Last updated: 2021-06-03T09:10:26.000Z Atlassian Confluence Upgrade Atlassian Confluence to version 7.11.0 Upgrade Atlassian Confluence to version 7.11.0 from https://www.atlassian.com/software/confluence/download-archives Pls suggest!

Igor M. made changes - 19/May/2021 11:03 AM

Fix Version/s		New: TC-7.0.7 [ 94708 ]
Fix Version/s		New: TC-6.1.8 [ 94794 ]

Igor M. added a comment - 19/May/2021 11:02 AM - edited

ganga.bopaiah eugen.zwinger746948495 TC version TC-6.1.8, TC-7.0.7 and latter contain the patch, if you upgrade Team Calendars plugin from the marketplace, you do not need to upgrade Confluence to get the fix. Above version of Confluence refers to bundled version of TC that comes with Confluence.

Igor M. added a comment - 19/May/2021 11:02 AM - edited ganga.bopaiah eugen.zwinger746948495 TC version TC-6.1.8, TC-7.0.7 and latter contain the patch, if you upgrade Team Calendars plugin from the marketplace, you do not need to upgrade Confluence to get the fix. Above version of Confluence refers to bundled version of TC that comes with Confluence.

Igor M. made changes - 18/May/2021 7:18 AM

Affects Version/s

New: 7.4.4 [ 92310 ]

Ganga Bopaiah added a comment - 18/May/2021 6:03 AM

Is the 7.4.4 LTS Version of Confluence also affected by this vulnerability?

Ganga Bopaiah added a comment - 18/May/2021 6:03 AM Is the 7.4.4 LTS Version of Confluence also affected by this vulnerability?

Eugen Zwinger [demicon] added a comment - 11/May/2021 10:41 AM

Is also the current LTS Version of Confluence affected by this vulnerability?

Eugen Zwinger [demicon] added a comment - 11/May/2021 10:41 AM Is also the current LTS Version of Confluence affected by this vulnerability?

David Black added a comment - 07/May/2021 6:02 AM

This is an independent assessment and you should evaluate its applicability to your own IT environment.

CVSS v3 score: 5.4 => Medium severity

Exploitability Metrics

Attack Vector	Network
Attack Complexity	Low
Privileges Required	Low
User Interaction	None

Scope Metric

Scope	Unchanged

Impact Metrics

Confidentiality	Low
Integrity	Low
Availability	None

https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

David Black added a comment - 07/May/2021 6:02 AM This is an independent assessment and you should evaluate its applicability to your own IT environment. CVSS v3 score: 5.4 => Medium severity Exploitability Metrics Attack Vector Network Attack Complexity Low Privileges Required Low User Interaction None Scope Metric Scope Unchanged Impact Metrics Confidentiality Low Integrity Low Availability None https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Created:: 22/Feb/2021 4:54 AM

Updated:: 21/Feb/2023 3:40 PM

Resolved:: 07/May/2021 6:01 AM

Details

Description

Affected versions:

Fixed version:

Attachments

Issue Links

Forms

Activity

[CONFSERVER-61266] Persistent XSS through Team Calendar in Confluence Server - CVE-2020-29444

Collapse comment: simon.r.martin added a comment - 27/Jul/2022 10:27 PM

Expand comment: simon.r.martin added a comment - 27/Jul/2022 10:27 PM

Collapse comment: Sreekanth added a comment - 06/Sep/2021 2:59 AM

Expand comment: Sreekanth added a comment - 06/Sep/2021 2:59 AM

Collapse comment: Igor M. added a comment - 19/May/2021 11:02 AM, Edited by Igor M. - 19/May/2021 11:03 AM

Expand comment: Igor M. added a comment - 19/May/2021 11:02 AM, Edited by Igor M. - 19/May/2021 11:03 AM

Collapse comment: Ganga Bopaiah added a comment - 18/May/2021 6:03 AM

Expand comment: Ganga Bopaiah added a comment - 18/May/2021 6:03 AM

Collapse comment: Eugen Zwinger [demicon] added a comment - 11/May/2021 10:41 AM

Expand comment: Eugen Zwinger [demicon] added a comment - 11/May/2021 10:41 AM

Collapse comment: David Black added a comment - 07/May/2021 6:02 AM

Expand comment: David Black added a comment - 07/May/2021 6:02 AM

People

Dates