CVE-2017-8080

CVE-2017-8080

EPSS 2.6%

Atlassian Hipchat Server before 2.2.4 allows remote authenticated users with user level privileges to execute arbitrary code via vectors involving image uploads.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://confluence.atlassian.com/hc/hipchat-server-security-advisory-2017-04-24-894234898.html https://jira.atlassian.com/browse/HCPUB-2980 http://www.securityfocus.com/bid/98262