Affected versions of Atlassian Fisheye and Crucible allow remote malicious users to view a product's SEN via an Information Disclosure vulnerability in the x-asen response header from Atlassian Analytics. The affected versions are before version 4.8.4.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atlassian crucible |
||
atlassian fisheye |