CVE-2021-43959 - OpenCVE

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability in the CSV importing feature of JSM Insight. When running in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information. The affected versions are before version 4.13.20, from version 4.14.0 before 4.20.8, and from version 4.21.0 before 4.22.2.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Atlassian	Jira Service Desk Jira Service Management

Configuration 1 [-]

OR	cpe:2.3:a:atlassian:jira_service_desk:::::data_center:::*
	cpe:2.3:a:atlassian:jira_service_desk:::::server:::*
	cpe:2.3:a:atlassian:jira_service_management:::::data_center:::*
	cpe:2.3:a:atlassian:jira_service_management:::::server:::*
	cpe:2.3:a:atlassian:jira_service_management:::::data_center:::*
	cpe:2.3:a:atlassian:jira_service_management:::::server:::*

No data.

References

Link	Providers
https://jira.atlassian.com/browse/JSDSERVER-11898

History

No history.

MITRE

Status: PUBLISHED

Assigner: atlassian

Published: 2022-07-26T08:00:14.034351Z

Updated: 2024-09-16T17:18:47.343Z

Reserved: 2021-11-16T00:00:00

Link: CVE-2021-43959

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2022-07-26T08:15:07.177

Modified: 2022-08-02T14:02:54.497

Link: CVE-2021-43959

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Jira Service Management Server", "vendor": "Atlassian", "versions": [{"lessThan": "4.13.20", "status": "affected", "version": "unspecified", "versionType": "custom"}, {"lessThan": "unspecified", "status": "affected", "version": "4.14.0", "versionType": "custom"}, {"lessThan": "4.20.8", "status": "affected", "version": "unspecified", "versionType": "custom"}, {"lessThan": "unspecified", "status": "affected", "version": "4.21.0", "versionType": "custom"}, {"lessThan": "4.22.2", "status": "affected", "version": "unspecified", "versionType": "custom"}]}, {"product": "Jira Service Management Data Center", "vendor": "Atlassian", "versions": [{"lessThan": "4.13.20", "status": "affected", "version": "unspecified", "versionType": "custom"}, {"lessThan": "unspecified", "status": "affected", "version": "4.14.0", "versionType": "custom"}, {"lessThan": "4.20.8", "status": "affected", "version": "unspecified", "versionType": "custom"}, {"lessThan": "unspecified", "status": "affected", "version": "4.21.0", "versionType": "custom"}, {"lessThan": "4.22.2", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "datePublic": "2022-07-26T00:00:00", "descriptions": [{"lang": "en", "value": "Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability in the CSV importing feature of JSM Insight. When running in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information. The affected versions are before version 4.13.20, from version 4.14.0 before 4.20.8, and from version 4.21.0 before 4.22.2."}], "problemTypes": [{"descriptions": [{"description": "Server-Side Request Forgery", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-07-26T08:00:13", "orgId": "f08a6ab8-ed46-4c22-8884-d911ccfe3c66", "shortName": "atlassian"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://jira.atlassian.com/browse/JSDSERVER-11898"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@atlassian.com", "DATE_PUBLIC": "2022-07-26T00:00:00", "ID": "CVE-2021-43959", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Jira Service Management Server", "version": {"version_data": [{"version_affected": "<", "version_value": "4.13.20"}, {"version_affected": ">=", "version_value": "4.14.0"}, {"version_affected": "<", "version_value": "4.20.8"}, {"version_affected": ">=", "version_value": "4.21.0"}, {"version_affected": "<", "version_value": "4.22.2"}]}}, {"product_name": "Jira Service Management Data Center", "version": {"version_data": [{"version_affected": "<", "version_value": "4.13.20"}, {"version_affected": ">=", "version_value": "4.14.0"}, {"version_affected": "<", "version_value": "4.20.8"}, {"version_affected": ">=", "version_value": "4.21.0"}, {"version_affected": "<", "version_value": "4.22.2"}]}}]}, "vendor_name": "Atlassian"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability in the CSV importing feature of JSM Insight. When running in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information. The affected versions are before version 4.13.20, from version 4.14.0 before 4.20.8, and from version 4.21.0 before 4.22.2."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Server-Side Request Forgery"}]}]}, "references": {"reference_data": [{"name": "https://jira.atlassian.com/browse/JSDSERVER-11898", "refsource": "MISC", "url": "https://jira.atlassian.com/browse/JSDSERVER-11898"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T04:10:16.934Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://jira.atlassian.com/browse/JSDSERVER-11898"}]}]}, "cveMetadata": {"assignerOrgId": "f08a6ab8-ed46-4c22-8884-d911ccfe3c66", "assignerShortName": "atlassian", "cveId": "CVE-2021-43959", "datePublished": "2022-07-26T08:00:14.034351Z", "dateReserved": "2021-11-16T00:00:00", "dateUpdated": "2024-09-16T17:18:47.343Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:atlassian:jira_service_desk:*:*:*:*:data_center:*:*:*", "matchCriteriaId": "AA928567-BF2C-4784-B408-56C4F91DA9A2", "versionEndExcluding": "4.13.20", "vulnerable": true}, {"criteria": "cpe:2.3:a:atlassian:jira_service_desk:*:*:*:*:server:*:*:*", "matchCriteriaId": "912BACE5-7B01-41B3-9980-BC810017A927", "versionEndExcluding": "4.13.20", "vulnerable": true}, {"criteria": "cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:data_center:*:*:*", "matchCriteriaId": "A76AB67A-8F66-4C06-9624-A4DC1659F066", "versionEndExcluding": "4.20.8", "versionStartIncluding": "4.14.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:server:*:*:*", "matchCriteriaId": "48D484EA-9645-4775-8CBA-D9C7B363BF4D", "versionEndExcluding": "4.20.8", "versionStartIncluding": "4.14.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:data_center:*:*:*", "matchCriteriaId": "A924AC8A-8464-47C7-8B20-B4B607150C8A", "versionEndExcluding": "4.22.2", "versionStartIncluding": "4.21.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:atlassian:jira_service_management:*:*:*:*:server:*:*:*", "matchCriteriaId": "A138D6E0-2730-4B5D-B145-181F56C1B12C", "versionEndExcluding": "4.22.2", "versionStartIncluding": "4.21.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability in the CSV importing feature of JSM Insight. When running in an environment like Amazon EC2, this flaw may be used to access to a metadata resource that provides access credentials and other potentially confidential information. The affected versions are before version 4.13.20, from version 4.14.0 before 4.20.8, and from version 4.21.0 before 4.22.2."}, {"lang": "es", "value": "Las versiones afectadas de Atlassian Jira Service Management Server y Data Center permiten a atacantes remotos autenticados acceder al contenido de los recursos de la red interna por medio de una vulnerabilidad de tipo Server-Side Request Forgery (SSRF) en la funcionalidad CSV importing de JSM Insight. Cuando se ejecuta en un entorno como Amazon EC2, este fallo puede usarse para acceder a un recurso de metadatos que proporciona credenciales de acceso y otra informaci\u00f3n potencialmente confidencial. Las versiones afectadas son anteriores a 4.13.20, desde versi\u00f3n 4.14.0 hasta 4.20.8, y desde versi\u00f3n 4.21.0 hasta 4.22.2."}], "id": "CVE-2021-43959", "lastModified": "2022-08-02T14:02:54.497", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.1, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-07-26T08:15:07.177", "references": [{"source": "security@atlassian.com", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://jira.atlassian.com/browse/JSDSERVER-11898"}], "sourceIdentifier": "security@atlassian.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-918"}], "source": "nvd@nist.gov", "type": "Primary"}]}