Uploaded image for project: 'Bitbucket Server'
  1. Bitbucket Server
  2. BSERV-12196

Spring Framework Vulnerability - CVE-2020-5398

    XMLWordPrintable

    Details

      Description

      Issue Summary

      Security vulnerability scan gave a red flag for Spring Framework plugin version that is used in Bitbucket Server version 6.10.0. The CVE-2020-5398 is being noted from the report scan.

      Description

      Plugin: Spring Framework 5.0.x < 5.0.16 / 5.1.x < 5.1.13 / 5.2.x < 5.2.3 Spring Framework Reflected File Download Vulnerability.

        Attachments

        1. image-2020-02-19-13-09-52-570.png
          image-2020-02-19-13-09-52-570.png
          130 kB
        2. spring1.PNG
          spring1.PNG
          104 kB

          Issue Links

            Activity

              People

              Assignee:
              esalter elisalter-atl
              Reporter:
              bannamalai Baskar Annamalai (Inactive)
              Votes:
              2 Vote for this issue
              Watchers:
              12 Start watching this issue

                Dates

                Due:
                Created:
                Updated:
                Resolved:

                  Backbone Issue Sync

                  • Backbone Issue Sync is enabled for your project, but there is no synchronization info for this issue.