CVE-2012-2926 : Atlassian JIRA before 5.0.1; Confluence before 3.5.16, 4.0 before 4.0.7, and 4.1 before 4.1.10; FishEye and Crucible bef

Atlassian JIRA before 5.0.1; Confluence before 3.5.16, 4.0 before 4.0.7, and 4.1 before 4.1.10; FishEye and Crucible before 2.5.8, 2.6 before 2.6.8, and 2.7 before 2.7.12; Bamboo before 3.3.4 and 3.4.x before 3.4.5; and Crowd before 2.0.9, 2.1 before 2.1.2, 2.2 before 2.2.9, 2.3 before 2.3.7, and 2.4 before 2.4.1 do not properly restrict the capabilities of third-party XML parsers, which allows remote attackers to read arbitrary files or cause a denial of service (resource consumption) via unspecified vectors.

Published 2012-05-22 15:55:03

Updated 2021-12-13 16:01:20

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Threat overview for CVE-2012-2926

Top countries where our scanners detected CVE-2012-2926

Top open port discovered on systems with this issue 80

IPs affected by CVE-2012-2926 9

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2012-2926!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2012-2926

Probability of exploitation activity in the next 30 days: 45.86%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 97 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2012-2926

Atlassian Crowd XML Entity Expansion Remote File Access

First seen: 2020-04-26

auxiliary/scanner/http/atlassian_crowd_fileaccess

This module simply attempts to read a remote file from the server using a vulnerability in the way Atlassian Crowd handles XML files. The vulnerability occurs while trying to expand external entities with the SYSTEM identifier. This module has been tested successfu

More information

CVSS scores for CVE-2012-2926

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.4	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:P	10.0	4.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: Partial
9.1	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H	3.9	5.2	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: High

References for CVE-2012-2926

http://confluence.atlassian.com/display/CROWD/Crowd+Security+Advisory+2012-05-17

Crowd Security Advisory 2012-05-17 - Atlassian Documentation
Patch;Vendor Advisory
http://www.securityfocus.com/bid/53595

Multiple Atlassian Products XML Parsing Denial of Service Vulnerability
Third Party Advisory;VDB Entry

CVEs referencing this url
http://confluence.atlassian.com/display/BAMBOO/Bamboo+Security+Advisory+2012-05-17

Bamboo Security Advisory 2012-05-17 - Atlassian Documentation
Patch;Vendor Advisory
http://confluence.atlassian.com/display/FISHEYE/FishEye+and+Crucible+Security+Advisory+2012-05-17

FishEye and Crucible Security Advisory 2012-05-17 - Atlassian Documentation
Patch;Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/75697

Atlassian JIRA XML denial of service CVE-2012-2928 Vulnerability Report
Third Party Advisory;VDB Entry

CVEs referencing this url
http://confluence.atlassian.com/display/JIRA/JIRA+Security+Advisory+2012-05-17

JIRA Security Advisory 2012-05-17 - Atlassian Documentation
Patch;Vendor Advisory

CVEs referencing this url
http://confluence.atlassian.com/display/DOC/Confluence+Security+Advisory+2012-05-17

Confluence Security Advisory 2012-05-17 - Atlassian Documentation
Patch;Vendor Advisory

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/75682

FishEye and Crucible XML denial of service CVE-2012-2926 Vulnerability Report
Third Party Advisory;VDB Entry

Products affected by CVE-2012-2926

Atlassian » Confluence
Versions before (<) 3.5.16
cpe:2.3:a:atlassian:confluence:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Jira
Versions before (<) 5.0.1
cpe:2.3:a:atlassian:jira:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Fisheye
Versions from including (>=) 2.6 and before (<) 2.6.8
cpe:2.3:a:atlassian:fisheye:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Fisheye
Versions from including (>=) 2.7 and before (<) 2.7.12
cpe:2.3:a:atlassian:fisheye:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Fisheye
Versions before (<) 2.5.8
cpe:2.3:a:atlassian:fisheye:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Crucible
Versions before (<) 2.5.8
cpe:2.3:a:atlassian:crucible:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Crucible
Versions from including (>=) 2.7 and before (<) 2.7.12
cpe:2.3:a:atlassian:crucible:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Crucible
Versions from including (>=) 2.6 and before (<) 2.6.8
cpe:2.3:a:atlassian:crucible:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Bamboo
Versions from including (>=) 3.4 and before (<) 3.4.5
cpe:2.3:a:atlassian:bamboo:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Bamboo
Versions before (<) 3.3.4
cpe:2.3:a:atlassian:bamboo:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Crowd
Versions from including (>=) 2.2.0 and before (<) 2.2.9
cpe:2.3:a:atlassian:crowd:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Crowd
Versions from including (>=) 2.1 and before (<) 2.1.2
cpe:2.3:a:atlassian:crowd:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Crowd
Versions from including (>=) 2.4.0 and before (<) 2.4.1
cpe:2.3:a:atlassian:crowd:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Crowd
Versions from including (>=) 2.3.0 and before (<) 2.3.7
cpe:2.3:a:atlassian:crowd:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Crowd
Versions before (<) 2.0.9
cpe:2.3:a:atlassian:crowd:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Confluence Server
Versions from including (>=) 4.0 and before (<) 4.0.7
cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*
Matching versions
Atlassian » Confluence Server
Versions from including (>=) 4.1 and before (<) 4.1.10
cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*
Matching versions