Security Advisory

CVE-2020-4014

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-06-01 06:35:30

Last updated 2024-09-17 03:23:41

Assigner atlassian

State PUBLISHED

Description

The /profile/deleteWatch.do resource in Atlassian Fisheye and Crucible before version 4.8.1 allows remote attackers to remove another users watching settings for a repository via an improper authorization vulnerability.

← Browse all CVEs View on cve.org ↗