CVE-2017-9512
CVE-2017-9512
The mostActiveCommitters.do resource in Atlassian Fisheye and Crucible, before version 4.4.1 allows anonymous remote attackers to access sensitive information, for example email addresses of committers, as it lacked permission checks.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Productos afectados
Atlassian · Atlassian Fisheye and Crucible¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →