Affected versions of Atlassian Jira Server/DC allows an unauthenticated attacker to upload arbitrary files to Jira via file upload functionality in the fileupload url. However An attacker cannot control the filename or its location, which prevents the possibility of RCE.

Files with name start with multPartReq with .tmp filename may be seen in "<JIRA_INSTALL>/work" path location due to this bug.

 
Affected versions:

• version < 9.4.0
• 9.4.0 < version < 9.4.3
• version <= 8.20.18
• version <= 8.13.27

Fixed versions: 

• 9.4.4
• 8.20.20
• 9.5.4