CVE-2019-20105

EUVD-2019-10661

17.03.2020, 03:15

The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 before version 7.0.1, and from version 7.1.0 before version 7.1.3 allows remote attackers who have obtained access to administrator's session to access the EditApplinkServlet resource without needing to re-authenticate to pass "WebSudo" in products that support "WebSudo" through an improper access control vulnerability.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	4.9 MEDIUM	NETWORK	LOW	HIGH	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 41%

Affected Products (NVD)

Vendor	Product	Version
atlassian	application_links	𝑥 ≤ 5.4.20
atlassian	application_links	6.0.0 ≤ 𝑥 ≤ 6.0.12
atlassian	application_links	6.1.0 ≤ 𝑥 < 6.1.2
atlassian	application_links	7.1.0 ≤ 𝑥 < 7.1.3
atlassian	application_links	7.0.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-306 - Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

References

https://ecosystem.atlassian.net/browse/APL-1391

https://jira.atlassian.com/browse/JRASERVER-70526

https://ecosystem.atlassian.net/browse/APL-1391

https://jira.atlassian.com/browse/JRASERVER-70526