CVE-2020-14170

Summary

Webhooks in Atlassian Bitbucket Server from version 5.4.0 before version 7.3.1 allow remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability.

Affected Software

VendorProductVersion RangeStatus
AtlassianBitbucket Server5.4.0 < unspecifiedaffected
AtlassianBitbucket Serverunspecified < 7.3.1affected

Weaknesses

  • Server Side Request Forgery (SSRF)

ADP Enrichment

CVE Program Container

Additional References

References