Information Disclosure Vulnerability in Fisheye and Crucible 4.8.9

CVE-2021-43955 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

The /rest-service-fecru/server-v1 resource in Fisheye and Crucible before version 4.8.9 allowed authenticated remote attackers to obtain information about installation directories via information disclosure vulnerability.

Learn more about our Cis Benchmark Audit For Server Software.