Atlassian.Jira.Authenticated.Upload.Remote.Code.Execution
Description
This indicates an attempt to execute a payload on Atlassian Jira via the Universal Plugin Manager.
Jira Universal Plugin Manager is designed for helping users manage their apps. An attacker with system administrator privileges could upload a malicious plugin through the plugin manager, leading to further attacks.
Affected Products
Atlassian Jira via the Universal Plugin Manager
Impact
System Compromise: Authenticated attackers can gain control of vulnerable systems.
Recommended Actions
Restrict and audit the access to the Universal plugin manager
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |