CVE-2017-18038 is a vulnerability in Atlassian Bitbucket
Published on February 2, 2018

The repository settings resource in Atlassian Bitbucket Server before version 5.6.0 allows remote attackers to read the first line of arbitrary files via a path traversal vulnerability through the default branch name.

NVD

Products Associated with CVE-2017-18038

Want to know whenever a new CVE is published for Atlassian Bitbucket? stack.watch will email you.

Atlassian Bitbucket

Affected Versions

Atlassian Bitbucket Server Version prior to 5.6.0 is affected by CVE-2017-18038

Exploit Probability

EPSS

0.22%

Percentile

45.01%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-18038 is a vulnerability in Atlassian BitbucketPublished on February 2, 2018

Products Associated with CVE-2017-18038

Affected Versions

Exploit Probability

CVE-2017-18038 is a vulnerability in Atlassian Bitbucket
Published on February 2, 2018