TROYANOSYVIRUS
Retour aux CVEs

CVE-2020-14171

MEDIUM
6.5

Description

Atlassian Bitbucket Server from version 4.9.0 before version 7.2.4 allows remote attackers to intercept unencrypted repository import requests via a Man-in-the-Middle (MITM) attack.

Details CVE

Score CVSS v3.16.5
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N
Vecteur d'attaqueNETWORK
ComplexiteHIGH
Privileges requisNONE
Interaction utilisateurNONE
Publie7/9/2020
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0

Produits affectes

atlassian:bitbucket

Faiblesses (CWE)

CWE-319

References

https://jira.atlassian.com/browse/BSERV-12434(security@atlassian.com)
https://jira.atlassian.com/browse/BSERV-12434(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.