3 matches found
CVE-2017-9511
The MultiPathResource class in Atlassian Fisheye and Crucible, before version 4.4.1 allows anonymous remote attackers to read arbitrary files via a path traversal vulnerability when Fisheye or Crucible is running on the Microsoft Windows operating system...
CVE-2017-9511
The CVE-2017-9511 entry affects Atlassian FishEye and Crucible (before 4.4.1). Summary: a path traversal bug in the MultiPathResource class on Windows allows anonymous remote attackers to read arbitrary files. Root cause: improper handling of file paths in the MultiPathResource implementation. Im...
CVE-2017-9511
The MultiPathResource class in Atlassian Fisheye and Crucible, before version 4.4.1 allows anonymous remote attackers to read arbitrary files via a path traversal vulnerability when Fisheye or Crucible is running on the Microsoft Windows operating system...