CVE-2020-14170
published 2020-07-09CVE-2020-14170: Webhooks in Atlassian Bitbucket Server from version 5.4.0 before version 7.3.1 allow remote attackers to access the content of internal network resources via a…
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
Webhooks in Atlassian Bitbucket Server from version 5.4.0 before version 7.3.1 allow remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| atlassian | bitbucket | >= 5.4.0 < 7.3.1 | 7.3.1 |
| atlassian | bitbucket_server | >= 5.4.0 < unspecified | unspecified |
| atlassian | bitbucket_server | >= unspecified < 7.3.1 | 7.3.1 |