Vulnerability in Atlassian Fisheye And Crucible

CVE-2018-13399

The Microsoft Windows Installer for Atlassian Fisheye and Crucible before version 4.6.1 allows local attackers to escalate privileges because of weak permissions on the installation directory.

EPSS: 0.000 (6.9th percentile) — read the EPSS interpretation.

Affected products

Atlassian Fisheye And Crucible — versions unspecified

References

jira.atlassian.com/browse/FE-7105 (x_refsource_CONFIRM)
jira.atlassian.com/browse/CRUC-8314 (x_refsource_CONFIRM)