diff --git a/2020/29xxx/CVE-2020-29446.json b/2020/29xxx/CVE-2020-29446.json index c32be317ca9..39933db43b5 100644 --- a/2020/29xxx/CVE-2020-29446.json +++ b/2020/29xxx/CVE-2020-29446.json @@ -1,76 +1,80 @@ { - "CVE_data_meta": { - "ASSIGNER": "security@atlassian.com", - "DATE_PUBLIC": "2020-12-10T00:00:00", - "ID": "CVE-2020-29446", - "STATE": "PUBLIC" - }, - "affects": { - "vendor": { - "vendor_data": [ - { - "product": { - "product_data": [ - { - "product_name": "Fisheye", - "version": { - "version_data": [ - { - "version_value": "4.8.5", - "version_affected": "<" - } - ] - } - }, - { - "product_name": "Crucible", - "version": { - "version_data": [ - { - "version_value": "4.8.5", - "version_affected": "<" - } - ] - } - } - ] - }, - "vendor_name": "Atlassian" - } - ] - } - }, - "data_format": "MITRE", - "data_type": "CVE", - "data_version": "4.0", - "description": { - "description_data": [ - { - "lang": "eng", - "value": "Affected versions of Atlassian Fisheye & Crucible allow remote attackers to browse local files via an Insecure Direct Object References (IDOR) vulnerability in the WEB-INF directory. The affected versions are before version 4.8.5." - } - ] - }, - "problemtype": { - "problemtype_data": [ - { - "description": [ - { - "lang": "eng", - "value": "Insecure Direct Object References (IDOR)" - } + "CVE_data_meta": { + "ASSIGNER": "security@atlassian.com", + "DATE_PUBLIC": "2020-12-10T00:00:00", + "ID": "CVE-2020-29446", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Fisheye", + "version": { + "version_data": [ + { + "version_value": "4.8.5", + "version_affected": "<" + } + ] + } + }, + { + "product_name": "Crucible", + "version": { + "version_data": [ + { + "version_value": "4.8.5", + "version_affected": "<" + } + ] + } + } + ] + }, + "vendor_name": "Atlassian" + } ] - } - ] - }, - "references": { - "reference_data": [ - { - "url": "https://jira.atlassian.com/browse/CRUC-8496" - }, - { - "url": "https://jira.atlassian.com/browse/FE-7326" - } - ] - } + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Affected versions of Atlassian Fisheye & Crucible allow remote attackers to browse local files via an Insecure Direct Object References (IDOR) vulnerability in the WEB-INF directory. The affected versions are before version 4.8.5." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Insecure Direct Object References (IDOR)" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://jira.atlassian.com/browse/CRUC-8496", + "refsource": "MISC", + "name": "https://jira.atlassian.com/browse/CRUC-8496" + }, + { + "url": "https://jira.atlassian.com/browse/FE-7326", + "refsource": "MISC", + "name": "https://jira.atlassian.com/browse/FE-7326" + } + ] + } } \ No newline at end of file