exploitDog

GHSA-mmfc-28m2-824q

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Atlassian Bitbucket Server before 4.7.1 allows remote attackers to read the first line of an arbitrary file via a directory traversal attack on the pull requests resource.

Atlassian Bitbucket Server before 4.7.1 allows remote attackers to read the first line of an arbitrary file via a directory traversal attack on the pull requests resource.

Ссылки

EPSS

Процентиль: 69%

0.00609

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2016-4320

CVSS3: 4.3

nvd

почти 9 лет назад

Atlassian Bitbucket Server before 4.7.1 allows remote attackers to read the first line of an arbitrary file via a directory traversal attack on the pull requests resource.

EPSS

Процентиль: 69%

0.00609

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-22