PT-2017-18107 · Atlassian · Ichat Server

Matt Hart

Publicado

2017-05-05

Atualizado

2019-10-03

CVE-2017-8080

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Atlassian Hipchat Server versions prior to 2.2.4

Description The issue allows remote authenticated users with user level privileges to execute arbitrary code via vectors involving image uploads.

Recommendations For versions prior to 2.2.4, update to version 2.2.4 or later to resolve the issue.

Correção

Unrestricted File Upload

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2017-8080

Ichat Server