[CONFSERVER-61453] Blind SSRF in Team Calendars REST API using location parameter - CVE-2020-29445 - Create and track feature requests for Atlassian products.

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 7.4.8, 7.11.0
Affects Version/s: 7.4.6
Component/s: None
Labels:

CVSS Score:
4.3
CVSS Severity:
Medium
CVE ID:
CVE-2020-29445

Affected versions of Confluence Server allow attackers to identify internal hosts and ports via a blind server-side request forgery vulnerability in Team Calendars parameters.

Affected versions:

< 7.11.0

Fixed versions:

7.11.0
7.4.8 (LTS)

This vulnerability is attributed to Stefano Castilletti, a security researcher at Apple.

mentioned in: Page Failed to load; Page Failed to load; Page Failed to load

Eugen Zwinger [demicon] added a comment - 11/May/2021 10:40 AM

Is it planed to include this bug fixes also into the current LTS Version?

Eugen Zwinger [demicon] added a comment - 11/May/2021 10:40 AM Is it planed to include this bug fixes also into the current LTS Version?

David Black added a comment - 07/May/2021 5:58 AM

This is an independent assessment and you should evaluate its applicability to your own IT environment.

CVSS v3 score: 4.3 => Medium severity

Exploitability Metrics

Attack Vector	Network
Attack Complexity	Low
Privileges Required	Low
User Interaction	None

Scope Metric

Scope	Unchanged

Impact Metrics

Confidentiality	Low
Integrity	None
Availability	None

See http://go.atlassian.com/cvss for more details.

https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

David Black added a comment - 07/May/2021 5:58 AM This is an independent assessment and you should evaluate its applicability to your own IT environment. CVSS v3 score: 4.3 => Medium severity Exploitability Metrics Attack Vector Network Attack Complexity Low Privileges Required Low User Interaction None Scope Metric Scope Unchanged Impact Metrics Confidentiality Low Integrity None Availability None See http://go.atlassian.com/cvss for more details. https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 03/Mar/2021 10:39 PM

Updated:: 21/Feb/2023 3:40 PM

Resolved:: 07/May/2021 5:59 AM

Details

Description

Attachments

Issue Links

Forms

Activity

[CONFSERVER-61453] Blind SSRF in Team Calendars REST API using location parameter - CVE-2020-29445

Collapse comment: Eugen Zwinger [demicon] added a comment - 11/May/2021 10:40 AM

Expand comment: Eugen Zwinger [demicon] added a comment - 11/May/2021 10:40 AM

Collapse comment: David Black added a comment - 07/May/2021 5:58 AM

Expand comment: David Black added a comment - 07/May/2021 5:58 AM

People

Dates