Uploaded image for project: 'Bitbucket Server'
  1. Bitbucket Server
  2. BSERV-10591

SSRF in the Github repository importer - CVE-2017-18036

    XMLWordPrintable

    Details

    • Symptom Severity:
      Severity 3 - Minor

      Description

      The Github repository importer in Atlassian Bitbucket Server before version 5.3.0 allows remote attackers to determine if a service they could not otherwise reach has open ports via a Server Side Request Forgery (SSRF) vulnerability.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              security-metrics-bot SecurityB
              Participants:
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: