Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 8.13.2, 8.15.0
Affects Version/s: 8.13.10, 9.4.0, 9.4.9
Component/s: Security
Labels:
- 2af
- advisory
- advisory-released
- bugbounty
- cve-2020-14174
- cvss-low
- idor
- monsters
- resolved-in-vf
- security
- security-imported

Introduced in Version:
8.13
Support reference count:
3
Symptom Severity:
Severity 2 - Major
UIS:
3

We have found during testing that by sending a fake header with a domain name (supplying as a suffix (i.e. attack.eu)) into the Host header field, the web server processes the input to send the request to an attacker-controlled host that resides at the supplied domain, and not to an internal virtual host that resides on the web server.

Affected versions:

8.13.10

Earlier fixed versions:

7.13.16
8.5.7
8.9.2
8.10.1
8.11.0

is cloned from

JRASERVER-71275 IDOR Disclosure of Private Project Titles - CVE-2020-14174

Closed

followed by: SEF-15650 Loading...

mentioned in: Page Loading...; Page Loading...

Assignee:: Karol Skwierawski
Reporter:: skavatekar
Votes:: 2 Vote for this issue
Watchers:: 14 Start watching this issue

Created:: 17/May/2022 9:43 AM
Updated:: 12/Nov/2024 11:04 AM
Resolved:: 12/Nov/2024 9:51 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates