CVE-2018-13399
CVE-2018-13399 concerns the Microsoft Windows Installer used by Atlassian Fisheye and Crucible. The weakness is weak permissions on the installation directory, which can be exploited locally to escalate privileges. Affected versions are Atlassian Fisheye/Crucible Windows Installer prior to 4.6.1....