CVE-2017-14591
N/A
N/A
Summary
Atlassian Fisheye and Crucible versions less than 4.4.3 and version 4.5.0 are vulnerable to argument injection through filenames in Mercurial repositories, allowing attackers to execute arbitrary code on a system running the impacted software.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Atlassian | Fisheye and Crucible | Versions less than 4.4.3 OR version 4.5.0 | affected |
Weaknesses
- Arbitrary Code Execution
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.