PT-2021-14454 · Tenable · Tenable For Jira Cloud

Abhiabhi2306

Published

2021-03-10

Updated

2021-03-18

CVE-2021-21371

CVSS v3.1

8.6

High

Vector

AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Tenable for Jira Cloud versions prior to 1.1.21

Description The issue allows an attacker with local access to the host to run arbitrary code by running the application with a specially crafted YAML configuration file. This is possible due to the use of the yaml.load() method, which can execute arbitrary commands. The problem is fixed in version 1.1.21 by using yaml.safe load() instead of yaml.load().

Recommendations For versions prior to 1.1.21, update to version 1.1.21 or later, which uses yaml.safe load() instead of yaml.load() to prevent arbitrary code execution. As a temporary workaround, consider manually adjusting yaml.load() to yaml.safe load() in the affected configuration files.

Fix

Deserialization of Untrusted Data

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502

Related Identifiers

CVE-2021-21371

GHSA-8278-88VV-X98R

PYSEC-2021-60

Affected Products

Tenable For Jira Cloud

PT-2021-14454 · Tenable · Tenable For Jira Cloud

CVE-2021-21371

Weakness Enumeration

Related Identifiers

Affected Products

References · 11