CVE-2018-13399
published 2018-10-16CVE-2018-13399: The Microsoft Windows Installer for Atlassian Fisheye and Crucible before version 4.6.1 allows local attackers to escalate privileges because of weak…
high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
The Microsoft Windows Installer for Atlassian Fisheye and Crucible before version 4.6.1 allows local attackers to escalate privileges because of weak permissions on the installation directory.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| atlassian | crucible | < 4.6.1 | 4.6.1 |
| atlassian | fisheye | < 4.6.1 | 4.6.1 |
| atlassian | fisheye_and_crucible | >= unspecified < 4.6.1 | 4.6.1 |