Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Medium
Fix Version/s: None
Affects Version/s: 8.13.10, 9.4.0, 9.4.9
Component/s: Security
Labels:
- 2af
- advisory
- advisory-released
- bugbounty
- cve-2020-14174
- cvss-low
- idor
- monsters
- security
- security-imported

Introduced in Version:
8.13
Support reference count:
3
Symptom Severity:
Severity 2 - Major
UIS:
3
Bug Fix Policy:
View Atlassian Server bug fix policy

We have found during testing that by sending a fake header with a domain name (supplying as a suffix (i.e. attack.eu)) into the Host header field, the web server processes the input to send the request to an attacker-controlled host that resides at the supplied domain, and not to an internal virtual host that resides on the web server.

Affected versions:

8.13.10

Earlier fixed versions:

7.13.16
8.5.7
8.9.2
8.10.1
8.11.0

is cloned from

JRASERVER-71275 IDOR Disclosure of Private Project Titles - CVE-2020-14174

Closed

followed by: SEF-15650 Loading...

mentioned in: Page Loading...

Assignee:: Karol Skwierawski

Reporter:: skavatekar

Votes:: 2 Vote for this issue

Watchers:: 14 Start watching this issue

Created:: 17/May/2022 9:43 AM

Updated:: 22/Dec/2023 2:19 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates