9 matches found
EUVD-2018-4138
Malware in sbrugna...
Atlassian Bitbucket 6.0.x < 6.0.3 Path Traversal Vulnerability
According to its self-reported version number, the Atlassian Bitbucket application running on the remote host is 5.13.x prior to 5.13.6, 5.14.x prior to 5.14.4, 5.15.x prior to 5.15.3, 5.16.x prior to 5.16.3, 6.0.x prior to 6.0.3 or 6.1.x prior to 6.1.2. It is, therefore, affected by a path...
Atlassian Bitbucket 6.1.x < 6.1.2 Path Traversal Vulnerability
According to its self-reported version number, the Atlassian Bitbucket application running on the remote host is 5.13.x prior to 5.13.6, 5.14.x prior to 5.14.4, 5.15.x prior to 5.15.3, 5.16.x prior to 5.16.3, 6.0.x prior to 6.0.3 or 6.1.x prior to 6.1.2. It is, therefore, affected by a path...
Atlassian Bitbucket 5.15.x < 5.15.3 Path Traversal Vulnerability
According to its self-reported version number, the Atlassian Bitbucket application running on the remote host is 5.13.x prior to 5.13.6, 5.14.x prior to 5.14.4, 5.15.x prior to 5.15.3, 5.16.x prior to 5.16.3, 6.0.x prior to 6.0.3 or 6.1.x prior to 6.1.2. It is, therefore, affected by a path...
Atlassian Bitbucket 5.14.x < 5.14.4 Path Traversal Vulnerability
According to its self-reported version number, the Atlassian Bitbucket application running on the remote host is 5.13.x prior to 5.13.6, 5.14.x prior to 5.14.4, 5.15.x prior to 5.15.3, 5.16.x prior to 5.16.3, 6.0.x prior to 6.0.3 or 6.1.x prior to 6.1.2. It is, therefore, affected by a path...
Bitbucket 6.1.1 Path Traversal to RCE
Impact In Bitbucket the four different user roles Bitbucket User, Project Creator, Admin and System Admin exist. An attacker with the permissions of the role Admin can abuse Bitbuckets Data Center Migration tool to drop an executable shell script in an arbitrary directory. This is caused by a...
Bitbucket Data Center - Path traversal in the migration tool leads to RCE - CVE-2019-3397
h3. Issue Summary Bitbucket Data Center had a path traversal vulnerability in the Data Center migration tool. A remote attacker with authenticated user with admin permissions can exploit this path traversal vulnerability to write files to arbitrary locations which can lead to remote code executio...
Design/Logic Flaw
DLL injection vulnerability in software installer for Intel Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access...
CVE-2018-12160
CVE-2018-12160 is a DLL injection vulnerability in Intel Data Center Migration Center Software installer (v3.1 and earlier). The issue allows an authenticated local user to execute code with default directory permissions due to improper installer permissions. Affected product/versions: Intel Data...