CVE-2018-20233 - Vulnerability Details - OpenCVE

The Upload add-on resource in Atlassian Universal Plugin Manager before version 2.22.14 allows remote attackers who have system administrator privileges to read files, make network requests and perform a denial of service attack via an XML External Entity vulnerability in the parsing of atlassian plugin xml files in an uploaded JAR.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Atlassian	Universal Plugin Manager

Configuration 1 [-]

cpe:2.3:a:atlassian:universal_plugin_manager:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.securityfocus.com/bid/106661
https://ecosystem.atlassian.net/browse/UPM-5964

History

No history.

MITRE

Status: PUBLISHED

Assigner: atlassian

Published: 2019-01-18T21:00:00Z

Updated: 2024-09-16T22:09:10.800Z

Reserved: 2018-12-19T00:00:00

Link: CVE-2018-20233

Vulnrichment

No data.

NVD

Status : Modified

Published: 2019-01-18T21:29:00.197

Modified: 2024-11-21T04:01:08.173

Link: CVE-2018-20233

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Universal Plugin Manager", "vendor": "Atlassian", "versions": [{"lessThan": "2.22.14", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "datePublic": "2019-01-17T00:00:00", "descriptions": [{"lang": "en", "value": "The Upload add-on resource in Atlassian Universal Plugin Manager before version 2.22.14 allows remote attackers who have system administrator privileges to read files, make network requests and perform a denial of service attack via an XML External Entity vulnerability in the parsing of atlassian plugin xml files in an uploaded JAR."}], "problemTypes": [{"descriptions": [{"description": "Improper Restriction of XML External Entity Reference ('XXE')", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-01-22T10:57:01", "orgId": "f08a6ab8-ed46-4c22-8884-d911ccfe3c66", "shortName": "atlassian"}, "references": [{"name": "106661", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/106661"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://ecosystem.atlassian.net/browse/UPM-5964"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@atlassian.com", "DATE_PUBLIC": "2019-01-17T00:00:00", "ID": "CVE-2018-20233", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Universal Plugin Manager", "version": {"version_data": [{"version_affected": "<", "version_value": "2.22.14"}]}}]}, "vendor_name": "Atlassian"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Upload add-on resource in Atlassian Universal Plugin Manager before version 2.22.14 allows remote attackers who have system administrator privileges to read files, make network requests and perform a denial of service attack via an XML External Entity vulnerability in the parsing of atlassian plugin xml files in an uploaded JAR."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Improper Restriction of XML External Entity Reference ('XXE')"}]}]}, "references": {"reference_data": [{"name": "106661", "refsource": "BID", "url": "http://www.securityfocus.com/bid/106661"}, {"name": "https://ecosystem.atlassian.net/browse/UPM-5964", "refsource": "CONFIRM", "url": "https://ecosystem.atlassian.net/browse/UPM-5964"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T11:58:18.690Z"}, "title": "CVE Program Container", "references": [{"name": "106661", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/106661"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://ecosystem.atlassian.net/browse/UPM-5964"}]}]}, "cveMetadata": {"assignerOrgId": "f08a6ab8-ed46-4c22-8884-d911ccfe3c66", "assignerShortName": "atlassian", "cveId": "CVE-2018-20233", "datePublished": "2019-01-18T21:00:00Z", "dateReserved": "2018-12-19T00:00:00", "dateUpdated": "2024-09-16T22:09:10.800Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:atlassian:universal_plugin_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "DAA790B0-E416-4FA2-8D11-836BC37B269A", "versionEndExcluding": "2.22.14", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Upload add-on resource in Atlassian Universal Plugin Manager before version 2.22.14 allows remote attackers who have system administrator privileges to read files, make network requests and perform a denial of service attack via an XML External Entity vulnerability in the parsing of atlassian plugin xml files in an uploaded JAR."}, {"lang": "es", "value": "El recurso \"Upload add-on\" en Atlassian Universal Plugin Manager en versiones anteriores a la 2.22.14 permite a los atacantes remotos que tienen privilegios del administrador del sistema leer archivos, enviar peticiones de red y realizar ataques de denegaci\u00f3n de servicio (DoS) mediante una vulnerabilidad XEE (XML External Entity) en el an\u00e1lisis de archivos xml del plugin \"atlassian\" en un JAR subido."}], "id": "CVE-2018-20233", "lastModified": "2024-11-21T04:01:08.173", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 5.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 1.2, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-01-18T21:29:00.197", "references": [{"source": "security@atlassian.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/106661"}, {"source": "security@atlassian.com", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://ecosystem.atlassian.net/browse/UPM-5964"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/106661"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://ecosystem.atlassian.net/browse/UPM-5964"}], "sourceIdentifier": "security@atlassian.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-611"}], "source": "nvd@nist.gov", "type": "Primary"}]}