Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Informations
NameCVE-2019-3398First vendor Publication2019-04-18
VendorCveLast vendor Modification2019-05-13

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:C/I:C/A:C)
Cvss Base Score9Attack RangeNetwork
Cvss Impact Score10Attack ComplexityLow
Cvss Expoit Score8AuthenticationRequires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

Confluence Server and Data Center had a path traversal vulnerability in the downloadallattachments resource. A remote attacker who has permission to add attachments to pages and / or blogs or to create a new space or a personal space or who has 'Admin' permissions for a space can exploit this path traversal vulnerability to write files to arbitrary locations which can lead to remote code execution on systems that run a vulnerable version of Confluence Server or Data Center. All versions of Confluence Server from 2.0.0 before 6.6.13 (the fixed version for 6.6.x), from 6.7.0 before 6.12.4 (the fixed version for 6.12.x), from 6.13.0 before 6.13.4 (the fixed version for 6.13.x), from 6.14.0 before 6.14.3 (the fixed version for 6.14.x), and from 6.15.0 before 6.15.2 are affected by this vulnerability.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3398

CWE : Common Weakness Enumeration

%idName
100 %CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE/SANS Top 25)

CPE : Common Platform Enumeration

TypeDescriptionCount
Application222

Snort® IPS/IDS

DateDescription
2019-06-22Atlassian Confluence Data Center and Server directory traversal attempt
RuleID : 50170 - Revision : 1 - Type : SERVER-WEBAPP
2019-06-22Atlassian Confluence Data Center and Server directory traversal attempt
RuleID : 50169 - Revision : 1 - Type : SERVER-WEBAPP
2019-06-22Atlassian Confluence Data Center and Server directory traversal attempt
RuleID : 50168 - Revision : 1 - Type : SERVER-WEBAPP

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/108067
BUGTRAQ https://seclists.org/bugtraq/2019/Apr/33
MISC http://packetstormsecurity.com/files/152616/Confluence-Server-Data-Center-Pat...
https://jira.atlassian.com/browse/CONFSERVER-58102

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
DateInformations
2019-05-13 17:19:07
  • Multiple Updates
2019-04-25 17:19:09
  • Multiple Updates
2019-04-25 00:19:05
  • Multiple Updates
2019-04-24 21:19:45
  • Multiple Updates
2019-04-24 17:19:05
  • Multiple Updates
2019-04-22 21:19:19
  • Multiple Updates
2019-04-19 00:19:04
  • First insertion