CVE-2023-44384

Published: Oct 6, 2023

Modified: Sep 19, 2024

PUBLISHED

CVSS v3.1

4.1

MEDIUM

Description

Discourse-jira is a Discourse plugin allows Jira projects, issue types, fields and field options will be synced automatically. An administrator user can make an SSRF attack by setting the Jira URL to an arbitrary location and enabling the `discourse_jira_verbose_log` site setting. A moderator user could manipulate the request path to the Jira API, allowing them to perform arbitrary GET requests using the Jira API credentials, potentially with elevated permissions, used by the application.

Vendor	Product	Versions
discourse	discourse-jira	affected `<= f11be4c`

Weaknesses (CWE)

CWE-691

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

Low

Integrity

None

Availability

None

References

https://github.com/discourse/discourse-jira/security/advisories/GHSA-pmv5-h2x6-35fh

x_refsource_CONFIRM

https://github.com/discourse/discourse-jira/pull/50

x_refsource_MISC

https://github.com/discourse/discourse-jira/commit/8a2d3ad228883199fd5f081cc93d173c88e2e48f

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-44384

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References