CVE-2019-20105

17.03.2020, 03:15

The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 before version 7.0.1, and from version 7.1.0 before version 7.1.3 allows remote attackers who have obtained access to administrator's session to access the EditApplinkServlet resource without needing to re-authenticate to pass "WebSudo" in products that support "WebSudo" through an improper access control vulnerability.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4.9 MEDIUM	NETWORK	LOW	HIGH	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
atlassian	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 40%

Vendor	Product	Version
atlassian	application_links	𝑥 ≤ 5.4.20
atlassian	application_links	6.0.0 ≤ 𝑥 ≤ 6.0.12
atlassian	application_links	6.1.0 ≤ 𝑥 < 6.1.2
atlassian	application_links	7.1.0 ≤ 𝑥 < 7.1.3
atlassian	application_links	7.0.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-306 - Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

References

https://ecosystem.atlassian.net/browse/APL-1391

https://jira.atlassian.com/browse/JRASERVER-70526

https://ecosystem.atlassian.net/browse/APL-1391

https://jira.atlassian.com/browse/JRASERVER-70526