Details
-
Type:
Bug
-
Status: Closed (View Workflow)
-
Priority:
Low
-
Resolution: Fixed
-
Affects Version/s: 8.3.2
-
Component/s: Data Center - Installer, Installation
-
Fixed in Long Term Support Release/s:
-
Introduced in Version:8.03
-
Symptom Severity:Severity 2 - Major
-
Bug Fix Policy:
Description
The usage of Tomcat in Jira before version 8.5.2 allows local attackers with permission to write a dll file to a directory in the global path environmental variable can inject code into via a DLL hijacking vulnerability.
Acknowledgment
We would like to thank Peleg Hadar of SafeBreach Labs for reporting this vulnerability.
Attachments
Issue Links
- mentioned in
-
Page Loading...