9
CVSSv2

CVE-2010-1165

Published: 20/04/2010 Updated: 17/08/2017
CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8
VMScore: 801
Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Vulnerability Summary

Atlassian JIRA 3.12 up to and including 4.1 allows remote authenticated administrators to execute arbitrary code by modifying the (1) attachment (aka attachments), (2) index (aka indexing), or (3) backup path and then uploading a file, as exploited in the wild in April 2010.

Vulnerable Product Search on Vulmon Subscribe to Product

atlassian jira 3.12

atlassian jira 3.12.1

atlassian jira 3.12.2

atlassian jira 3.12.3

atlassian jira 3.13

atlassian jira 3.13.1

atlassian jira 3.13.2

atlassian jira 3.13.3

atlassian jira 3.13.4

atlassian jira 3.13.5

atlassian jira 4.0

atlassian jira 4.0.1

atlassian jira 4.0.2

atlassian jira 4.1