CVE-2020-14192

Summary

Affected versions of Atlassian Fisheye and Crucible allow remote attackers to view a product's SEN via an Information Disclosure vulnerability in the x-asen response header from Atlassian Analytics. The affected versions are before version 4.8.4.

Affected Software

VendorProductVersion RangeStatus
AtlassianFisheyeunspecified < 4.8.4affected
AtlassianCrucibleunspecified < 4.8.4affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References