CVE-2017-18038 is a vulnerability in Atlassian Bitbucket
Published on February 2, 2018
The repository settings resource in Atlassian Bitbucket Server before version 5.6.0 allows remote attackers to read the first line of arbitrary files via a path traversal vulnerability through the default branch name.
Products Associated with CVE-2017-18038
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2017-18038 are published in Atlassian Bitbucket:
Affected Versions
Atlassian Bitbucket Server Version prior to 5.6.0 is affected by CVE-2017-18038Exploit Probability
EPSS
0.22%
Percentile
45.01%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.