The Microsoft Windows Installer for Atlassian Bitbucket Server and Data Center before version 6.10.9, 7.x before 7.6.4, and from version 7.7.0 before 7.10.1 allows local attackers to escalate privileges because of weak permissions on the installation directory.
References
Link | Resource |
---|---|
https://jira.atlassian.com/browse/BSERV-12753 | Issue Tracking Vendor Advisory |
https://www.kb.cert.org/vuls/id/240785 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: atlassian
Published: 2021-02-16T00:00:00
Updated: 2021-02-18T19:06:08
Reserved: 2021-01-27T00:00:00
Link: CVE-2020-36233
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-02-18T20:15:12.587
Modified: 2021-02-24T19:30:13.527
Link: CVE-2020-36233
JSON object: View
Redhat Information
No data.
CWE