1 results (0.004 seconds)
CVSS: 8.5EPSS: 0%CPEs: 11EXPL: 0
CVSS: 8.5EPSS: 0%CPEs: 11EXPL: 0CVE-2017-16857
https://notcve.org/view.php?id=CVE-2017-16857
05 Dec 2017 — It is possible to bypass the bitbucket auto-unapprove plugin via minimal brute-force because it is relying on asynchronous events on the back-end. This allows an attacker to merge any code into unsuspecting repositories. This affects all versions of the auto-unapprove plugin, however since the auto-unapprove plugin is not bundled with Bitbucket Server it does not affect any particular version of Bitbucket. Es posible omitir el plugin bitbucket auto-unapprove mediante fuerza bruta mínima, ya que depende de e... • https://jira.atlassian.com/browse/BSERV-10439 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •