Merge branch 'atlassian-20180516' of https://github.com/asecurityteam/cvelist

2025-08-04 08:44:25 +00:00 · 2018-05-16 08:05:40 -04:00 · 2018-05-16 08:05:40 -04:00 · 8d3943dd91
commit 8d3943dd91
parent 1a7e0d8786 e90313fdcb
1 changed files with 79 additions and 11 deletions
--- a/2018/5xxx/CVE-2018-5231.json
+++ b/2018/5xxx/CVE-2018-5231.json
@ -1,17 +1,85 @@
 {
-   "CVE_data_meta" : {
-      "ASSIGNER" : "cve@mitre.org",
-      "ID" : "CVE-2018-5231",
-      "STATE" : "RESERVED"
+   "CVE_data_meta": {
+      "ASSIGNER": "security@atlassian.com",
+      "DATE_PUBLIC": "2018-05-16T00:00:00",
+      "ID": "CVE-2018-5231",
+      "STATE": "PUBLIC"
   },
-   "data_format" : "MITRE",
-   "data_type" : "CVE",
-   "data_version" : "4.0",
-   "description" : {
-      "description_data" : [
+   "affects": {
+      "vendor": {
+         "vendor_data": [
+            {
+               "product": {
+                  "product_data": [
+                     {
+                        "product_name": "Jira",
+                        "version": {
+                           "version_data": [
+                              {
+                                 "version_value": "7.6.6",
+                                 "version_affected": "<"
+                              },
+                              {
+                                 "version_value": "7.7.0",
+                                 "version_affected": ">="
+                              },
+                              {
+                                 "version_value": "7.7.4",
+                                 "version_affected": "<"
+                              },
+                              {
+                                 "version_value": "7.8.0",
+                                 "version_affected": ">="
+                              },
+                              {
+                                 "version_value": "7.8.4",
+                                 "version_affected": "<"
+                              },
+                              {
+                                 "version_value": "7.9.0",
+                                 "version_affected": ">="
+                              },
+                              {
+                                 "version_value": "7.9.2",
+                                 "version_affected": "<"
+                              }
+                           ]
+                        }
+                     }
+                  ]
+               },
+               "vendor_name": "Atlassian"
+            }
+         ]
+      }
+   },
+   "data_format": "MITRE",
+   "data_type": "CVE",
+   "data_version": "4.0",
+   "description": {
+      "description_data": [
         {
-            "lang" : "eng",
-            "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem.  When the candidate has been publicized, the details for this candidate will be provided."
+            "lang": "eng",
+            "value": "The ForgotLoginDetails resource in Atlassian Jira before version 7.6.6, from version 7.7.0 before version 7.7.4, from version 7.8.0 before version 7.8.4 and from version 7.9.0 before version 7.9.2 allows remote attackers to perform a denial of service attack via sending requests to it."
+         }
+      ]
+   },
+   "problemtype": {
+      "problemtype_data": [
+         {
+            "description": [
+               {
+                  "lang": "eng",
+                  "value": "Denial of Service"
+               }
+            ]
+         }
+      ]
+   },
+   "references": {
+      "reference_data": [
+         {
+            "url": "https://jira.atlassian.com/browse/JRASERVER-67290"
         }
      ]
   }