h3. Issue Summary
Security vulnerability scan gave a red flag for Spring Framework plugin version that is used in Bitbucket Server version 6.10.0. The CVE-2020-5398 is being noted from the report scan.
h3. Description
Plugin: Spring Framework 5.0.x < 5.0.16 / 5.1.x < 5.1.13 / 5.2.x < 5.2.3 Spring Framework Reflected File Download Vulnerability.
!spring1.PNG|thumbnail!
CPE | Name | Operator | Version |
---|---|---|---|
bitbucket server | le | 6.10.0 | |
bitbucket server | lt | 6.10.4 | |
bitbucket server | lt | 7.0.0 |