CVE-2020-17527 - Does this vulnerability affecting Bamboo?

XMLWordPrintable

    • Type: Suggestion
    • Resolution: Fixed
    • 7.2.4
    • Component/s: Tomcat tasks
    • None

      Please advise whether following vulnerability affecting Bamboo?

       

      Apache has released an update to address a vulnerability affecting Tomcat. Successful exploitation of the vulnerability may allow an attacker to perform Denial-of-Service (DoS) and/or obtain sensitive information on a vulnerable system.

       

       

      Vulnerability Information
      CVE CVSS Base Score GITSIR’s Rating* Product Name Version
      CVE-2020-17527 Not Available Not Available Apache Tomcat Apache Tomcat 10.0.0-M1 to 10.0.0-M9
      Apache Tomcat 9.0.0.M5 to 9.0.39
      Apache Tomcat 8.5.1 to 8.5.59

       

      GITSIR’s Rating* CVSS Base Score
      High x >= 8.0
      Medium 4.0 <= x < 8.0
      Low x < 4.0

            Assignee:
            Unassigned
            Reporter:
            Ashfak Mulla
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: