[JRASERVER-72392] Vulnerability in Search Template Leads to Reflected XSS JIRA Software Server - CVE-2021-26078 - Create and track feature requests for Atlassian products.

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low (View bug fix roadmap)
Fix Version/s: 8.5.14, 8.13.6, 8.16.1, 8.17.0
Affects Version/s: 8.5.13, 8.13.5
Component/s: None
Labels:

CVSS Score:
4.7
CVSS Severity:
Medium
CVE ID:
CVE-2021-26078

Affected versions of Jira Server and Jira Data Center have a XSS vulnerability in the number range searcher component which allows remote attackers to inject arbitrary HTML or JavaScript.

Affected versions:

versions < 8.5.14
8.6.0 ≤ version < 8.13.6
8.14.0 ≤ version < 8.16.1

Fixed versions:

8.5.14
8.13.6
8.16.1
8.17.0

Security Metrics Bot made changes - 01/Sep/2021 6:01 AM

CVE ID

New: CVE-2021-26078

AB made changes - 12/Aug/2021 3:38 AM

Description

Original: Affected versions of Jira Server and Jira Data Center have a XSS vulnerability in the number range searcher component which allows remote attackers to inject arbitrary HTML or JavaScript:

_*Affected versions:*_
* versions < 8.5.14
* 8.6.0 ≤ version < 8.13.6
* 8.14.0 ≤ version < 8.16.1

_*Fixed versions:*_
* 8.5.14
* 8.13.6
* 8.16.1
* 8.17.0

New: Affected versions of Jira Server and Jira Data Center have a XSS vulnerability in the number range searcher component which allows remote attackers to inject arbitrary HTML or JavaScript.

_*Affected versions:*_
* versions < 8.5.14
* 8.6.0 ≤ version < 8.13.6
* 8.14.0 ≤ version < 8.16.1

_*Fixed versions:*_
* 8.5.14
* 8.13.6
* 8.16.1
* 8.17.0

David Black made changes - 07/Jun/2021 10:29 PM

Description

Original: Affected versions of Jira Server and Jira Data Center have a XSS vulnerability in the number range searcher component:

_*Affected versions:*_
* versions < 8.5.14
* 8.6.0 ≤ version < 8.13.6
* 8.14.0 ≤ version < 8.16.1

_*Fixed versions:*_
* 8.5.14
* 8.13.6
* 8.16.1
* 8.17.0

New: Affected versions of Jira Server and Jira Data Center have a XSS vulnerability in the number range searcher component which allows remote attackers to inject arbitrary HTML or JavaScript:

_*Affected versions:*_
* versions < 8.5.14
* 8.6.0 ≤ version < 8.13.6
* 8.14.0 ≤ version < 8.16.1

_*Fixed versions:*_
* 8.5.14
* 8.13.6
* 8.16.1
* 8.17.0

David Black made changes - 07/Jun/2021 10:19 PM

Description

Original: Affected versions of Jira Server have a XSS vulnerability in the number range searcher component:

_*Affected versions:*_
* versions < 8.5.14
* 8.6.0 ≤ version < 8.13.6
* 8.14.0 ≤ version < 8.16.1

_*Fixed versions:*_
* 8.5.14
* 8.13.6
* 8.16.1
* 8.17.0

New: Affected versions of Jira Server and Jira Data Center have a XSS vulnerability in the number range searcher component:

_*Affected versions:*_
* versions < 8.5.14
* 8.6.0 ≤ version < 8.13.6
* 8.14.0 ≤ version < 8.16.1

_*Fixed versions:*_
* 8.5.14
* 8.13.6
* 8.16.1
* 8.17.0

Prerana Shenoy added a comment - 19/May/2021 9:04 PM

Hey Oli,

This security issue has been patched and rolled out in the `Fix Versions` mentioned in the ticket.

The issue has been mitigated.

Thanks,

Prerana

Prerana Shenoy added a comment - 19/May/2021 9:04 PM Hey Oli, This security issue has been patched and rolled out in the `Fix Versions` mentioned in the ticket. The issue has been mitigated. Thanks, Prerana

CaptainHook added a comment - 14/May/2021 6:37 AM

Hey,

In your Bugbounty program on Bugcrowd

with this reference ID: 1286ca38c33de2fe058e9c357f5637778f85c1138853034796b14c3e636ba66d

CaptainHook added a comment - 14/May/2021 6:37 AM Hey, In your Bugbounty program on Bugcrowd with this reference ID: 1286ca38c33de2fe058e9c357f5637778f85c1138853034796b14c3e636ba66d

Oliver Liebing added a comment - 12/May/2021 10:00 AM

Hi,
where can can I find detailed information about this possible security breach or how to check our system if it's relevant for us?

Regards,
Oli

Oliver Liebing added a comment - 12/May/2021 10:00 AM Hi, where can can I find detailed information about this possible security breach or how to check our system if it's relevant for us? Regards, Oli

Prerana Shenoy added a comment - 10/May/2021 10:44 PM

Yes, CVE-2021-26078 is now filed for this issue.

Prerana Shenoy added a comment - 10/May/2021 10:44 PM Yes, CVE-2021-26078 is now filed for this issue.

CaptainHook added a comment - 10/May/2021 10:24 AM

Hi Did you file **

CVE-2021-26078 for this issue?

CaptainHook added a comment - 10/May/2021 10:24 AM Hi Did you file ** CVE-2021-26078 for this issue?

David Black made changes - 10/May/2021 6:42 AM

Labels

Original: advisory advisory-released dont-import security

New: CVE-2021-26078 advisory advisory-released dont-import security

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 8 Start watching this issue

Created:: 06/May/2021 8:02 AM

Updated:: 01/Sep/2021 6:01 AM

Resolved:: 06/May/2021 4:17 PM

Details

Description

Attachments

Forms

Activity

[JRASERVER-72392] Vulnerability in Search Template Leads to Reflected XSS JIRA Software Server - CVE-2021-26078

Collapse comment: Prerana Shenoy added a comment - 19/May/2021 9:04 PM

Expand comment: Prerana Shenoy added a comment - 19/May/2021 9:04 PM

Collapse comment: CaptainHook added a comment - 14/May/2021 6:37 AM

Expand comment: CaptainHook added a comment - 14/May/2021 6:37 AM

Collapse comment: Oliver Liebing added a comment - 12/May/2021 10:00 AM

Expand comment: Oliver Liebing added a comment - 12/May/2021 10:00 AM

Collapse comment: Prerana Shenoy added a comment - 10/May/2021 10:44 PM

Expand comment: Prerana Shenoy added a comment - 10/May/2021 10:44 PM

Collapse comment: CaptainHook added a comment - 10/May/2021 10:24 AM

Expand comment: CaptainHook added a comment - 10/May/2021 10:24 AM

People

Dates