CVE-2021-21371

Опубликовано: 10 мар. 2021

Источник: nvd

CVSS3: 5

CVSS3: 8.6

CVSS2: 4.6

EPSS Низкий

Описание

Tenable for Jira Cloud is an open source project designed to pull Tenable.io vulnerability data, then generate Jira Tasks and sub-tasks based on the vulnerabilities' current state. It published in pypi as "tenable-jira-cloud". In tenable-jira-cloud before version 1.1.21, it is possible to run arbitrary commands through the yaml.load() method. This could allow an attacker with local access to the host to run arbitrary code by running the application with a specially crafted YAML configuration file. This is fixed in version 1.1.21 by using yaml.safe_load() instead of yaml.load().

Ссылки

https://github.com/tenable/integration-jira-cloud/commit/f8c2095fd529e664e7fa25403a0a4a85bb3907d0
Patch
Third Party Advisory
https://github.com/tenable/integration-jira-cloud/security/advisories/GHSA-8278-88vv-x98r
Third Party Advisory
https://pypi.org/project/tenable-jira-cloud/
Product
Third Party Advisory
https://pyyaml.docsforge.com/master/documentation/#loading-yaml
Third Party Advisory
https://github.com/tenable/integration-jira-cloud/commit/f8c2095fd529e664e7fa25403a0a4a85bb3907d0
Patch
Third Party Advisory
https://github.com/tenable/integration-jira-cloud/security/advisories/GHSA-8278-88vv-x98r
Third Party Advisory
https://pypi.org/project/tenable-jira-cloud/
Product
Third Party Advisory
https://pyyaml.docsforge.com/master/documentation/#loading-yaml
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tenable:jira_cloud:*:*:*:*:*:*:*:*

Версия до 1.1.21 (исключая)

EPSS

Процентиль: 23%

0.00079

Низкий

5 Medium

CVSS3

8.6 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-502

Связанные уязвимости

GHSA-8278-88vv-x98r

CVSS3: 5

github

почти 5 лет назад

Execution of untrusted code through config file

EPSS

Процентиль: 23%

0.00079

Низкий

5 Medium

CVSS3

8.6 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-502