CVE-2020-4016

Summary

The /plugins/servlet/jira-blockers/ resource in the crucible-jira-ril plugin in Atlassian Fisheye and Crucible before version 4.8.1 allows remote attackers to get the ID of configured Jira application links via an information disclosure vulnerability.

Affected Software

VendorProductVersion RangeStatus
AtlassianCrucibleunspecified < 4.8.1affected
AtlassianFisheyeunspecified < 4.8.1affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References