Описание
Affected versions of Atlassian Fisheye allow remote attackers to view the HTTP password of a repository via an Information Disclosure vulnerability in the logging feature. The affected versions are before version 4.8.3.
Ссылки
- Issue TrackingVendor Advisory
- Issue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.8.3 (исключая)
cpe:2.3:a:atlassian:fisheye:*:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00302
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
больше 3 лет назад
Affected versions of Atlassian Fisheye allow remote attackers to view the HTTP password of a repository via an Information Disclosure vulnerability in the logging feature. The affected versions are before version 4.8.3.
EPSS
Процентиль: 53%
0.00302
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200