CVE-2021-43944

08.03.2022, 02:15

This issue exists to document that a security improvement in the way that Jira Server and Data Center use templates has been implemented. Affected versions of Atlassian Jira Server and Data Center allowed remote attackers with system administrator permissions to execute arbitrary code via Template Injection leading to Remote Code Execution (RCE) in the Email Templates feature. The affected versions are before version 8.13.15, and from version 8.14.0 before 8.20.3.

Code Injection

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.2 HIGH	NETWORK	LOW	HIGH	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Affected Products (NVD)

Vendor	Product	Version
atlassian	jira_data_center	𝑥 < 8.13.15
atlassian	jira_data_center	8.14.0 ≤ 𝑥 < 8.20.3
atlassian	jira_server	𝑥 < 8.13.15
atlassian	jira_server	8.14.0 ≤ 𝑥 < 8.20.3

𝑥

= Vulnerable software versions

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
atlassian	jira_data_center	𝑥 < 8.13.15	ADP
atlassian	jira_data_center	8.14.0 ≤ 𝑥 < 8.20.3	ADP
atlassian	jira_server	𝑥 < 8.13.15	ADP
atlassian	jira_server	8.14.0 ≤ 𝑥 < 8.20.3	ADP

Common Weakness Enumeration

CWE-94 - Improper Control of Generation of Code ('Code Injection')
The software constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References

https://jira.atlassian.com/browse/JRASERVER-73072