Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-71204

SSRF in Dashboard & Gadgets - CVE-2019-20408

XMLWordPrintable

      The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.7.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vulnerability due to a logic bug in the JiraWhitelist class.

      As an example to indicate impact, when running the vulnerable version of Jira in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information.

      Affected versions:

      • version < 8.7.0

      Fixed versions:

      • 8.7.0

            [JRASERVER-71204] SSRF in Dashboard & Gadgets - CVE-2019-20408

            Mateusz Marzęcki made changes -
            Assignee New: Mateusz Marzęcki [ mmarzecki ]
            Mateusz Marzęcki made changes -
            Fix Version/s New: 8.5.2 [ 89500 ]
            Fix Version/s Original: 8.5.0 [ 87493 ]
            Mark Lang made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 509302 ]
            set-jac-bot made changes -
            Fixed in Long Term Support Release/s New: [Download 8.5|https://confluence.atlassian.com/enterprise/atlassian-enterprise-releases-948227420.html]
            Mateusz Walas (Inactive) made changes -
            Fix Version/s New: 8.5.0 [ 87493 ]
            Tilwin Joy (Inactive) made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 500698 ]
            Mark Lang made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 500271 ]
            Jerzy Jedrzejaszek (Inactive) made changes -
            Remote Link Original: This issue links to "JSEC-159 (Bulldog)" [ 499740 ]
            Jerzy Jedrzejaszek (Inactive) made changes -
            Remote Link New: This issue links to "JSEC-159 (Bulldog)" [ 499740 ]
            Cameron (Inactive) made changes -
            Description Original: The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.7.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vulnerability due to a logic bug in the JiraWhitelist class.

            When running in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information.

            *Affected versions:*
             * version < 8.7.0

            *Fixed versions:*
             * 8.7.0             		New: The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.7.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vulnerability due to a logic bug in the JiraWhitelist class.

            As an example to indicate impact, when running the vulnerable version of Jira in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information.

            *Affected versions:*
             * version < 8.7.0

            *Fixed versions:*
             * 8.7.0

              mmarzecki Mateusz Marzęcki
              security-metrics-bot Security Metrics Bot
              Affected customers:
              0 This affects my team
              Watchers:
              18 Start watching this issue

                Created:
                Updated:
                Resolved: