CVE-2020-14190
published 2020-11-25CVE-2020-14190: Affected versions of Atlassian Fisheye/Crucible allow remote attackers to achieve Regex Denial of Service via user-supplied regex in EyeQL. The affected…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Affected versions of Atlassian Fisheye/Crucible allow remote attackers to achieve Regex Denial of Service via user-supplied regex in EyeQL. The affected versions are before version 4.8.4.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| atlassian | crucible | < 4.8.4 | 4.8.4 |
| atlassian | crucible | >= unspecified < 4.8.4 | 4.8.4 |
| atlassian | fisheye | < 4.8.4 | 4.8.4 |
| atlassian | fisheye | >= unspecified < 4.8.4 | 4.8.4 |