Uploaded image for project: 'Jira Service Management Data Center'
  1. Jira Service Management Data Center
  2. JSDSERVER-11898

SSRF via CSV import into JSM Insight - CVE-2021-43959

XMLWordPrintable

    • 4.6
    • Medium
    • CVE-2021-43959

      Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability in the CSV importing feature of JSM Insight.

      When running in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information.

      The affected versions are before version 4.13.20, from version 4.14.0 before 4.20.8, and from version 4.21.0 before 4.22.2.

      Affected versions:

      • version < 4.13.20
      • 4.14.0 ≤ version < 4.20.8
      • 4.21.0 ≤ version < 4.22.2

      Fixed versions:

      • 4.13.20
      • 4.20.8
      • 4.22.2

            [JSDSERVER-11898] SSRF via CSV import into JSM Insight - CVE-2021-43959

            Mandeep Jadon made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 733361 ]
            Security Metrics Bot made changes -
            CVE ID New: CVE-2021-43959
            AB made changes -
            Security Original: Atlassian Staff [ 10750 ]
            Security Metrics Bot made changes -
            Labels Original: advisory advisory-to-release dont-import security New: advisory advisory-to-release dont-import security 🔢✅

            Security Metrics Bot added a comment -

            This is an independent assessment and you should evaluate its applicability to your own IT environment.

            CVSS v3 score: 4.6 => Medium severity

            Exploitability Metrics

            Attack Vector Network
            Attack Complexity Low
            Privileges Required Low
            User Interaction Required

            Scope Metric

            Scope Unchanged

            Impact Metrics

            Confidentiality Low
            Integrity Low
            Availability None

            https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

            Security Metrics Bot added a comment - This is an independent assessment and you should evaluate its applicability to your own IT environment. CVSS v3 score: 4.6 => Medium severity Exploitability Metrics Attack Vector Network Attack Complexity Low Privileges Required Low User Interaction Required Scope Metric Scope Unchanged Impact Metrics Confidentiality Low Integrity Low Availability None https://asecurityteam.bitbucket.io/cvss_v3/#CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
            AB made changes -
            Resolution New: Fixed [ 1 ]
            Status Original: Draft [ 12872 ] New: Published [ 12873 ]
            AB made changes -
            Summary Original: SSRF via CSV import into JSM Insight - CVE registration for this issue is already in progress New: SSRF via CSV import into JSM Insight - CVE-2021-43959
            AB made changes -
            Summary Original: SSRF via CSV import into JSM Insight New: SSRF via CSV import into JSM Insight - CVE registration for this issue is already in progress
            AB made changes -
            Summary Original: SSRF via CSV import into JSM Insights New: SSRF via CSV import into JSM Insight
            AB made changes -
            Description Original: Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability in the ObjectSchema.jspa endpoint.

            When running in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information.

            The affected versions are before version 4.13.20, from version 4.14.0 before 4.20.8, and from version 4.21.0 before 4.22.2.

            *Affected versions:*

             * version < 4.13.20
             * 4.14.0 ≤ version < 4.20.8
             * 4.21.0 ≤ version < 4.22.2

            *Fixed versions:*

             * 4.13.20
             * 4.20.8
             * 4.22.2
            		New: Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability in the CSV importing feature of JSM Insight.

            When running in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information.

            The affected versions are before version 4.13.20, from version 4.14.0 before 4.20.8, and from version 4.21.0 before 4.22.2.

            *Affected versions:*

             * version < 4.13.20
             * 4.14.0 ≤ version < 4.20.8
             * 4.21.0 ≤ version < 4.22.2

            *Fixed versions:*

             * 4.13.20
             * 4.20.8
             * 4.22.2

              Unassigned Unassigned
              security-metrics-bot Security Metrics Bot
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: