cnvd - cnvd-2018-08686

CNVD-2018-08686

Vulnerability from cnvd - Published: 2018-05-02

Title

Atlassian Application Links OAuth status rest resource跨站请求伪造漏洞

Description

Atlassian Application Links是澳大利亚Atlassian公司的一款使用在Atlassian产品中用于创建连接到其他应用程序中的按钮的插件。OAuth status rest resource是其中的一个OAuth身份资源包。 Atlassian Application Links中的OAuth status rest resource存在跨站请求伪造漏洞。远程攻击者可利用该漏洞访问内部网络资源内容。

Severity

中

Patch Name

Atlassian Application Links OAuth status rest resource跨站请求伪造漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://ecosystem.atlassian.net/browse/APL-1359

Reference

https://ecosystem.atlassian.net/browse/APL-1359

Impacted products

Name
['Atlassian Application Links <5.2.7', 'Atlassian Application Links 5.3.0，<5.3.4', 'Atlassian Application Links 5.4.0，<5.4.3']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-18096"
    }
  },
  "description": "Atlassian Application Links\u662f\u6fb3\u5927\u5229\u4e9aAtlassian\u516c\u53f8\u7684\u4e00\u6b3e\u4f7f\u7528\u5728Atlassian\u4ea7\u54c1\u4e2d\u7528\u4e8e\u521b\u5efa\u8fde\u63a5\u5230\u5176\u4ed6\u5e94\u7528\u7a0b\u5e8f\u4e2d\u7684\u6309\u94ae\u7684\u63d2\u4ef6\u3002OAuth status rest resource\u662f\u5176\u4e2d\u7684\u4e00\u4e2aOAuth\u8eab\u4efd\u8d44\u6e90\u5305\u3002\r\n\r\nAtlassian Application Links\u4e2d\u7684OAuth status rest resource\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8bbf\u95ee\u5185\u90e8\u7f51\u7edc\u8d44\u6e90\u5185\u5bb9\u3002",
  "discovererName": "unknown",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://ecosystem.atlassian.net/browse/APL-1359",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-08686",
  "openTime": "2018-05-02",
  "patchDescription": "Atlassian Application Links\u662f\u6fb3\u5927\u5229\u4e9aAtlassian\u516c\u53f8\u7684\u4e00\u6b3e\u4f7f\u7528\u5728Atlassian\u4ea7\u54c1\u4e2d\u7528\u4e8e\u521b\u5efa\u8fde\u63a5\u5230\u5176\u4ed6\u5e94\u7528\u7a0b\u5e8f\u4e2d\u7684\u6309\u94ae\u7684\u63d2\u4ef6\u3002OAuth status rest resource\u662f\u5176\u4e2d\u7684\u4e00\u4e2aOAuth\u8eab\u4efd\u8d44\u6e90\u5305\u3002\r\n\r\nAtlassian Application Links\u4e2d\u7684OAuth status rest resource\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8bbf\u95ee\u5185\u90e8\u7f51\u7edc\u8d44\u6e90\u5185\u5bb9\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Atlassian Application Links OAuth status rest resource\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Atlassian Application Links \u003c5.2.7",
      "Atlassian Application Links 5.3.0\uff0c\u003c5.3.4",
      "Atlassian Application Links 5.4.0\uff0c\u003c5.4.3"
    ]
  },
  "referenceLink": "https://ecosystem.atlassian.net/browse/APL-1359",
  "serverity": "\u4e2d",
  "submitTime": "2018-04-09",
  "title": "Atlassian Application Links OAuth status rest resource\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e"
}

CVE-2017-18096 (GCVE-0-2017-18096)

Vulnerability from cvelistv5 – Published: 2018-04-04 12:00 – Updated: 2024-09-16 17:54

Summary

The OAuth status rest resource in Atlassian Application Links before version 5.2.7, from 5.3.0 before 5.3.4 and from 5.4.0 before 5.4.3 allows remote attackers with administrative rights to access the content of internal network resources via a Server Side Request Forgery (SSRF) by creating an OAuth application link to a location they control and then redirecting access from the linked location's OAuth status rest resource to an internal location. When running in an environment like Amazon EC2, this flaw maybe used to access to a metadata resource that provides access credentials and other potentially confidential information.

Severity ?

No CVSS data available.

CWE

Server-Side Request Forgery (SSRF)

Assigner

atlassian

References

URL

Tags

https://ecosystem.atlassian.net/browse/APL-1359

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Atlassian	Atlassian Application Links	Affected: unspecified , < 5.2.7 (custom) Affected: 5.3.0 , < unspecified (custom) Affected: unspecified , < 5.3.4 (custom) Affected: 5.4.0 , < unspecified (custom) Affected: unspecified , < 5.4.3 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T21:13:48.177Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://ecosystem.atlassian.net/browse/APL-1359"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Atlassian Application Links",
          "vendor": "Atlassian",
          "versions": [
            {
              "lessThan": "5.2.7",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            },
            {
              "lessThan": "unspecified",
              "status": "affected",
              "version": "5.3.0",
              "versionType": "custom"
            },
            {
              "lessThan": "5.3.4",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            },
            {
              "lessThan": "unspecified",
              "status": "affected",
              "version": "5.4.0",
              "versionType": "custom"
            },
            {
              "lessThan": "5.4.3",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2018-04-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The OAuth status rest resource in Atlassian Application Links before version 5.2.7, from 5.3.0 before 5.3.4 and from 5.4.0 before 5.4.3 allows remote attackers with administrative rights to access the content of internal network resources via a Server Side Request Forgery (SSRF) by creating an OAuth application link to a location they control and then redirecting access from the linked location\u0027s OAuth status rest resource to an internal location. When running in an environment like Amazon EC2, this flaw maybe used to access to a metadata resource that provides access credentials and other potentially confidential information."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Server-Side Request Forgery (SSRF)",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-04-04T11:57:01",
        "orgId": "f08a6ab8-ed46-4c22-8884-d911ccfe3c66",
        "shortName": "atlassian"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://ecosystem.atlassian.net/browse/APL-1359"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@atlassian.com",
          "DATE_PUBLIC": "2018-04-04T00:00:00",
          "ID": "CVE-2017-18096",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Atlassian Application Links",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_value": "5.2.7"
                          },
                          {
                            "version_affected": "\u003e=",
                            "version_value": "5.3.0"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_value": "5.3.4"
                          },
                          {
                            "version_affected": "\u003e=",
                            "version_value": "5.4.0"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_value": "5.4.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Atlassian"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The OAuth status rest resource in Atlassian Application Links before version 5.2.7, from 5.3.0 before 5.3.4 and from 5.4.0 before 5.4.3 allows remote attackers with administrative rights to access the content of internal network resources via a Server Side Request Forgery (SSRF) by creating an OAuth application link to a location they control and then redirecting access from the linked location\u0027s OAuth status rest resource to an internal location. When running in an environment like Amazon EC2, this flaw maybe used to access to a metadata resource that provides access credentials and other potentially confidential information."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Server-Side Request Forgery (SSRF)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://ecosystem.atlassian.net/browse/APL-1359",
              "refsource": "CONFIRM",
              "url": "https://ecosystem.atlassian.net/browse/APL-1359"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f08a6ab8-ed46-4c22-8884-d911ccfe3c66",
    "assignerShortName": "atlassian",
    "cveId": "CVE-2017-18096",
    "datePublished": "2018-04-04T12:00:00Z",
    "dateReserved": "2018-02-01T00:00:00",
    "dateUpdated": "2024-09-16T17:54:30.699Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2018-08686

CVE-2017-18096 (GCVE-0-2017-18096)

Tags

Sightings

Nomenclature