Versions Compared

Old Version 3

changes.mady.by.user Paulo Alves

Saved on

compared with

New Version Current

changes.mady.by.user Diamantino Campos

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Note
We recommend the update of Xray Test Management for Jira Server & Data Center to the 6the 6.1.2.1 - latest version.

Xray Test Management for Jira Server and Data Center - Remote Code Execution on

...

Document Generator

Summary

Remote Code Execution on

Templates export

Document Generator

Advisory Release Date

 10:00 AM CET 

Product

Xray Test Management for Jira Server & Data Center

Affected on Xray Test Management for Jira Server & Jira Data Center Versions

  • 6.1.2 and earlier

Fixed on Xray Test Management Jira Server & Jira Data Center Versions

  • 6.1.2.1 and later

Summary of Vulnerability

This advisory discloses a security vulnerability classified as critical that was present in Xray Test Management for Jira Server & Data Center. Versions of Jira Server & Data Center affected by this vulnerability:

...

Customers who have upgraded Xray Test Management for Jira Server & Data Center to version 6.1.2.1 or higher are not affected.

Customers who are on any of the affected versions, upgrade your Xray Test Management for Jira Server & Data Center installations immediately to fix this vulnerability.

...

We detected a Remote Code Execution vulnerability on the Template exportsDocument Generator.

The issue can be tracked here: 

...

We have released Xray for Jira Server & DC version version 6.1.2.1 which is available for upgrade through the Atlassian Marketplace.

...