Vulnerability in Atlassian Fisheye And Crucible
CVE-2018-5223
Fisheye and Crucible did not correctly check if a configured Mercurial repository URI contained values that the Windows operating system may consider argument parameters. An attacker who has permission to add a repository in Fisheye or Cru…
EPSS: 0.009 (76.2th percentile) — read the EPSS interpretation.
Affected products
- Atlassian Fisheye And Crucible — versions unspecified, 4.5.0, unspecified
References
- confluence.atlassian.com/x/aS5sO (x_refsource_CONFIRM)
- jira.atlassian.com/browse/CRUC-8181 (x_refsource_CONFIRM)
- 103665 (vdb-entry, x_refsource_BID)
- confluence.atlassian.com/x/Zi5sO (x_refsource_CONFIRM)
- jira.atlassian.com/browse/FE-7014 (x_refsource_CONFIRM)