CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

NVD•added 2022/03/14 2:15 a.m.•15 views

CVE-2021-43954

The DefaultRepositoryAdminService class in Fisheye and Crucible before version 4.8.9 allowed remote attackers, who have 'can add repository permission', to enumerate the existence of internal network and filesystem resources via a Server-Side Request Forgery SSRF vulnerability...

4.3CVSS0.00143EPSS

Exploits0References2

Prion•added 2022/03/14 2:15 a.m.•26 views

Server side request forgery (ssrf)

4CVSS4.6AI score0.00143EPSS

Exploits0References2Affected Software2

CVE•added 2022/03/14 1:45 a.m.•84 views

CVE-2021-43954

An SSRF vulnerability in Atlassian Fisheye and Crucible: DefaultRepositoryAdminService allows authenticated remote attackers with 'can add repository' to enumerate internal network and filesystem resources. Affected versions are before 4.8.9; fixed in 4.8.9. Impact includes potential exposure of ...

4.3CVSS4.6AI score0.00143EPSS

Exploits0References2Affected Software2

Cvelist•added 2022/03/14 1:45 a.m.•16 views

CVE-2021-43954

4.9AI score0.00143EPSS

Exploits0References2

Vulnrichment•added 2022/03/14 1:45 a.m.•24 views

CVE-2021-43954

6.8AI score0.00143EPSS

Exploits0References2

Atlassian•added 2022/03/04 1:52 a.m.•30 views

CVE-2021-43954: File and network resource enumeration via SSRF in DefaultRepositoryAdminService

Affected versions of Atlassian Fisheye and Crucible allow remote attackers, who have 'can add repository permission', to enumerate the existence of internal network and filesystem resources via a Server-Side Request Forgery SSRF vulnerability in the DefaultRepositoryAdminService class. When runni...

4.3CVSS5AI score0.00143EPSS

Exploits0

Atlassian•added 2022/03/04 1:52 a.m.•58 views

CVE-2021-43954: File and network resource enumeration via SSRF in DefaultRepositoryAdminService

4.3CVSS5AI score0.00143EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by