漏洞编号和级别 CVE编号:CVE-2019-15003,危险级别:高危,CVSS分值:官方未评定 CVE编号:CVE-2019-15004,危险级别:高危,CVSS分值:官方未评定 影响版本 Jira Service Desk Server andJira Service Desk Data Center version < 3.9.17 3.10.0 <= version < 3.16.11 4.0.0 <= version < 4.2.6 4.3.0 <= version < 4.3.5 4.4.0 <= version < 4.4.3 4.5.0 <= version < 4.5.1 漏洞概述 Atlassian Jira Service Desk Server和Atlassian Jira Service Desk Data Center都是澳大利亚Atlassian公司的产品。Atlassian Jira Service Desk Server是一套IT服务台与请求跟踪系统的服务器版。该系统主要用于接收、跟踪和管理团队客户的请求。Atlassian Jira Service Desk Data Center是Atlassian Jira Service Desk的数据中心版本。存在如下漏洞: 信息泄露漏洞CVE-2019-15003和路径遍历漏洞CVE-2019-15004,利用漏洞,攻击者可以查看易受攻击的实例中包含的所有Jira项目中的所有问题。这可能包括Jira Service Desk项目,Jira Core项目和Jira Software项目。 漏洞验证 暂无POC/EXP。 修复建议 目前厂商已发布更新,如下: 4.5.1 can be downloaded from https://www.atlassian.com/software/jira/service-desk/update 4.4.3 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update 4.3.5 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update 4.2.6 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update 3.16.11 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update 3.9.17 which can be downloaded from https://www.atlassian.com/software/jira/service-desk/update 缓解措施: CVE-2019-15003 1. 在反向代理或负载平衡级别阻止对包含jspa,jpsx,jsp的Jira的请求,或者将Jira配置为将包含jspa,jspx,jsp的请求重定向到安全URL 2. 将以下内容添加到[jira-installation-directory]/atlassian-jira/WEB-INF/urlrewrite.xml的 CVE-2019-15004 1. 在反向代理或负载平衡级别阻止对包含..的Jira的请求,或者将Jira配置为将包含..的请求重定向到安全URL 2. 将以下内容添加到[jira-installation-directory]/atlassian-jira/WEB-INF/urlrewrite.xml的 参考链接 https://confluence.atlassian.com/jira/jira-service-desk-security-advisory-2019-11-06-979412717.html |