Jira Desk Server 和 Data Center漏洞安全通告
发布时间 2019-11-11漏洞编号和级别
CVE编号:CVE-2019-15003,危险级别:高危,CVSS分值:官方未评定
CVE编号:CVE-2019-15004,危险级别:高危,CVSS分值:官方未评定
影响版本
Jira Service Desk Server andJira Service Desk Data Center
version < 3.9.17
3.10.0 <= version < 3.16.11
4.0.0 <= version < 4.2.6
4.3.0 <= version < 4.3.5
4.4.0 <= version < 4.4.3
4.5.0 <= version < 4.5.1
漏洞概述
Atlassian Jira Service Desk Server和Atlassian Jira Service Desk Data Center都是澳大利亚Atlassian公司的产品。Atlassian Jira Service Desk Server是一套IT服务台与请求跟踪系统的服务器版。该系统主要用于接收、跟踪和管理团队客户的请求。Atlassian Jira Service Desk Data Center是Atlassian Jira Service Desk的数据中心版本。存在如下漏洞:
信息泄露漏洞CVE-2019-15003和路径遍历漏洞CVE-2019-15004,利用漏洞,攻击者可以查看易受攻击的实例中包含的所有Jira项目中的所有问题。这可能包括Jira Service Desk项目,Jira Core项目和Jira Software项目。
漏洞验证
暂无POC/EXP。
修复建议
目前厂商已发布更新,如下:
4.5.1 can be downloaded from https://www.atlassian.com/software/jira/service-desk/update
4.4.3 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update
4.3.5 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update
4.2.6 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update
3.16.11 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update
3.9.17 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update
缓解措施:
CVE-2019-15003
1. 在反向代理或负载平衡级别阻止对包含jspa,jpsx,jsp的Jira的请求,或者将Jira配置为将包含jspa,jspx,jsp的请求重定向到安全URL
2. 将以下内容添加到[jira-installation-directory]/atlassian-jira/WEB-INF/urlrewrite.xml的<urlrewrite>部分中,保存以上更改后,重新启动Jira:
CVE-2019-15004
1. 在反向代理或负载平衡级别阻止对包含..的Jira的请求,或者将Jira配置为将包含..的请求重定向到安全URL
2. 将以下内容添加到[jira-installation-directory]/atlassian-jira/WEB-INF/urlrewrite.xml的<urlrewrite>部分中,保存以上更改后,重新启动Jira:
参考链接
https://confluence.atlassian.com/jira/jira-service-desk-security-advisory-2019-11-06-979412717.html
京公网安备11010802024551号