CVE-2019-11581
CVE-2019-11581
In short
A flaw in Jira Server and Data Center allows attackers to inject malicious template code through email functions, leading to remote code execution on the affected server. This is critical because it gives attackers complete control over the system without needing valid credentials.
Technical detail
Server-side template injection (SSTI) vulnerability in ContactAdministrators and SendBulkMail actions allows unauthenticated remote code execution. The attack vector requires sending specially crafted input to template rendering mechanisms; successful exploitation grants arbitrary code execution with the privileges of the Jira process.
Summary generated and translated by AI from the official description.
There was a server-side template injection vulnerability in Jira Server and Data Center, in the ContactAdministrators and the SendBulkMail actions. An attacker is able to remotely execute code on systems that run a vulnerable version of Jira Server or Data Center. All versions of Jira Server and Data Center from 4.4.0 before 7.6.14, from 7.7.0 before 7.13.5, from 8.0.0 before 8.0.3, from 8.1.0 before 8.1.2, and from 8.2.0 before 8.2.3 are affected by this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Atlassian · Jira Server and Data Centerpublic PoCs found — 3
githubgithub.com/jas502n/CVE-2019-11581★ 92githubgithub.com/kobs0N/CVE-2019-11581★ 10githubgithub.com/PetrusViet/CVE-2019-11581★ 6⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →