Uploaded image for project: 'Crucible'
  1. Crucible
  2. CRUC-8533

CVE-2021-43955: /rest-service-fecru/server-v1 leaks information about installation directories

    XMLWordPrintable

Details

    • 5.7
    • Medium
    • CVE-2021-43955

    Description

      The /rest-service-fecru/server-v1 resource in Fisheye and Crucible before version 4.8.9 allowed authenticated remote attackers to obtain information about installation directories via information disclosure vulnerability.

      Affected versions:

      • version < 4.8.9

      Fixed versions:

      • 4.8.9

      Attachments

        Issue Links

          relates to

          Public Security Vulnerability - FE-7397 CVE-2021-43955: /rest-service-fecru/server-v1 leaks information about installation directories

          • Low - Low priority issues
          • Published

          Activity

            People

              Unassigned Unassigned
              security-metrics-bot Security Metrics Bot
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: