CVE-2020-4017

The /rest/jira-ril/1.0/jira-rest/applinks resource in the crucible-jira-ril plugin in Atlassian Fisheye and Crucible before version 4.8.1 allows remote attackers to get information about any configured Jira application links via an information disclosure vulnerability.

Link	Resource
https://jira.atlassian.com/browse/FE-7286	Vendor Advisory
https://jira.atlassian.com/browse/CRUC-8470	Vendor Advisory

Configuration 1

cpe:2.3:a:atlassian:crucible:*:*:*:*:*:*:*:* cpe:2.3:a:atlassian:fisheye:*:*:*:*:*:*:*:*

---

Published : 2020-06-01 07:15

Updated : 2021-07-21 11:39

---

NVD link : CVE-2020-4017

Mitre link : CVE-2020-4017

No products.

NVD-CWE-noinfo