Due to the unsanitized user input in the Artifact Upload feature, an arbitrary file deletion attack could be carried out by leveraging path traversal in the "artifactName" parameter.
The vendor's disclosure and fix for this vulnerability can be found here.
Neither me nor the vendor requested a CVE for this vulnerability.
This vulnerability requires:
- Valid user credentials
More details and the exploitation process can be found in this PDF.