The MultiPathResource class in Atlassian Fisheye and Crucible, before version 4.4.1 allows anonymous remote malicious users to read arbitrary files via a path traversal vulnerability when Fisheye or Crucible is running on the Microsoft Windows operating system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atlassian fisheye |
||
atlassian crucible |