Sourbyte05

**Name of the Vulnerable Software and Affected Versions** JumpServer (affected versions not specified) **Description** JumpServer is a bastion host and operation and maintenance security audit system. A Server-Side Template Injection (SSTI) issue exists in the Applet and VirtualApp upload functionality. This can be exploited by users with administrative privileges, specifically those with Application Applet Management or Virtual Application Management permissions. Successful exploitation allows attackers to execute arbitrary code within the JumpServer Core container. The root cause is the unsafe use of Jinja2 template rendering when processing user-uploaded YAML configuration files. When a user uploads an Applet or VirtualApp ZIP package, the manifest.yml file is processed through Jinja2 without sandbox restrictions, enabling template injection attacks. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.