Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-72059

Stored XSS via Custom Fields on Screens Modal - CVE-2020-36234

XMLWordPrintable

    • 4.8
    • Medium
    • CVE-2020-36234

      Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the Screens Modal view.

      The affected versions are before version 8.5.11, from version 8.6.0 before 8.13.3, and from version 8.14.0 before 8.15.0.

       

      Affected versions:

      • version < 8.5.11
      • 8.6.0 ≤ version < 8.13.3
      • 8.14.0 ≤ version < 8.15.0

      Fixed versions:

      • 8.5.11
      • 8.13.3
      • 8.15.0  

            [JRASERVER-72059] Stored XSS via Custom Fields on Screens Modal - CVE-2020-36234

            Security Metrics Bot made changes -
            CVE ID New: CVE-2020-36234

            Irfan Ahmed Zainulabdin added a comment -

            8.15.0 upgrade has fixed XSS issue at view screen page but introduced XSS issue at in Associate field to screen page, which is again vulnerable.

             

            Below XSS issue reproduced on 8.15.0 version in Associate field to screen page which was not present in previous 8.14.0 version

            Irfan Ahmed Zainulabdin added a comment - 8.15.0 upgrade has fixed XSS issue at view screen page but introduced XSS issue at in Associate field to screen page, which is again vulnerable.   Below XSS issue reproduced on 8.15.0 version in Associate field to screen page which was not present in previous 8.14.0 version
            David Black made changes -
            Labels Original: CVE-2020-36234 advisory advisory-to-release dont-import security New: CVE-2020-36234 advisory advisory-released dont-import security
            AB made changes -
            Labels Original: advisory advisory-to-release dont-import security New: CVE-2020-36234 advisory advisory-to-release dont-import security
            AB made changes -
            Summary Original: Stored XSS via Custom Fields on Screens Modal - CVE-PENDING New: Stored XSS via Custom Fields on Screens Modal - CVE-2020-36234
            AB made changes -
            Security Original: Atlassian Staff [ 10750 ]
            AB made changes -
            Resolution New: Fixed [ 1 ]
            Status Original: Draft [ 12872 ] New: Published [ 12873 ]
            AB made changes -
            Summary Original: Stored XSS via Custom Fields on Screens Modal New: Stored XSS via Custom Fields on Screens Modal - CVE-PENDING

            AB added a comment -

            This is an independent assessment and you should evaluate its applicability to your own IT environment.

            CVSS v3 score: 4.8 => Medium severity

            Exploitability Metrics

            Attack Vector Network
            Attack Complexity Low
            Privileges Required High
            User Interaction Required

            Scope Metric

            Scope Changed

            Impact Metrics

            Confidentiality Low
            Integrity Low
            Availability None

            https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

             

            AB added a comment - This is an independent assessment and you should evaluate its applicability to your own IT environment. CVSS v3 score: 4.8 => Medium severity Exploitability Metrics Attack Vector Network Attack Complexity Low Privileges Required High User Interaction Required Scope Metric Scope Changed Impact Metrics Confidentiality Low Integrity Low Availability None https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N  
            AB made changes -
            Description Original: Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the Screens Modal view.

            The affected versions are before version 8.5.11, from version 8.6.0 before 8.13.3, and from version 8.14.0 before 8.15.0.

            **Affected versions:**

             * version < 8.5.11
             * 8.6.0 ≤ version < 8.13.3
             * 8.14.0 ≤ version < 8.15.0

            **Fixed versions:**

             * 8.5.11
             * 8.13.3
             * 8.15.0
            		New: Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the Screens Modal view.

            The affected versions are before version 8.5.11, from version 8.6.0 before 8.13.3, and from version 8.14.0 before 8.15.0.

             

            *Affected versions:*
             * version < 8.5.11
             * 8.6.0 ≤ version < 8.13.3
             * 8.14.0 ≤ version < 8.15.0

            *Fixed versions:*
             * 8.5.11
             * 8.13.3
             * 8.15.0  

              Unassigned Unassigned
              security-metrics-bot Security Metrics Bot
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: