#VU18629 Path traversal in Bitbucket Server - CVE-2019-3397

Cybersecurity Help s.r.o.

Published: 2019-05-29

Vulnerability identifier: #VU18629

Vulnerability risk: High

CVSSv4.0: 2.5 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:U/U:Amber]

CVE-ID: CVE-2019-3397

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Bitbucket Server
Server applications / Application servers

Vendor: Atlassian

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences via the Data Center migration tool. A remote attacker with authenticated user with admin permissions can send a specially crafted HTTP request and read or write to arbitrary files on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Bitbucket Server: 5.13.0 - 5.16.2, 6.0.0 - 6.0.2, 6.1.0 - 6.1.1

External links
https://packetstormsecurity.com/files/download/153052/bitbucket-traversal.txt
https://jira.atlassian.com/browse/BSERV-11706

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Path traversal in Atlassian Bitbucket Server