#VU12441 Improper input validation in Atlassian Fisheye and Atlassian Crucible - CVE-2018-5223

Cybersecurity Help s.r.o.

Published: 2018-05-07 | Updated: 2018-05-14

Vulnerability identifier: #VU12441

Vulnerability risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2018-5223

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Atlassian Fisheye
Client/Desktop applications / Office applications
Atlassian Crucible
Client/Desktop applications / Office applications

Vendor: Atlassian

Description

The vulnerability allows a remote authenticated attacker to execute arbitrary code on the target system.

The weakness exists due to incorrect check if a configured Mercurial repository URI contained values that the Windows operating system may consider argument parameters. A remote attacker can supply a specially crafted input and execute arbitrary code.

Successful exploitation of the vulnerability may result in system compromise.

Mitigation
Update to versions 4.4.6, 4.5.3 or 4.6.0.

Vulnerable software versions

Atlassian Fisheye: 4.4.0 - 4.5.2

Atlassian Crucible: 4.4.0 - 4.5.2

External links
https://jira.atlassian.com/browse/CRUC-8181

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Atlassian Fisheye and Crucible