CVE-2018-13399

Summary

The Microsoft Windows Installer for Atlassian Fisheye and Crucible before version 4.6.1 allows local attackers to escalate privileges because of weak permissions on the installation directory.

Affected Software

VendorProductVersion RangeStatus
AtlassianFisheye and Crucibleunspecified < 4.6.1affected

Weaknesses

  • Incorrect Permission Assignment for Critical Resource

ADP Enrichment

CVE Program Container

Additional References

References