Vulnerability in Atlassian Bitbucket Server
CVE-2020-14170
Webhooks in Atlassian Bitbucket Server from version 5.4.0 before version 7.3.1 allow remote attackers to access the content of internal network resources via a Server-Side Request Forgery (SSRF) vulnerability.
EPSS: 0.002 (41.9th percentile) — read the EPSS interpretation.
Affected products
- Atlassian Bitbucket Server — versions 5.4.0, unspecified
References
- jira.atlassian.com/browse/BSERV-12433 (x_refsource_MISC)