CVE

Id
93488  
CVE No.
CVE-2016-6668  
Status
Candidate  
Description
The Atlassian Hipchat Integration Plugin for Bitbucket Server 6.26.0 before 6.27.5, 6.28.0 before 7.3.7, and 7.4.0 before 7.8.17; Confluence HipChat plugin 6.26.0 before 7.8.17; and HipChat for JIRA plugin 6.26.0 before 7.8.17 allows remote attackers to obtain the secret key for communicating with HipChat instances by reading unspecified pages.  
Phase
Assigned (20160810)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
793851 93488 CVE-2016-6668 BUGTRAQ:20161006 September 2016 - HipChat Plugin for various products - Critical Security Advisory  View
793852 93488 CVE-2016-6668 URL:http://www.securityfocus.com/archive/1/archive/1/539530/100/0/threaded  View
793853 93488 CVE-2016-6668 MISC:http://packetstormsecurity.com/files/139004/Atlassian-HipChat-Secret-Key-Disclosure.html  View
793854 93488 CVE-2016-6668 CONFIRM:https://confluence.atlassian.com/bitbucketserver/bitbucket-server-security-advisory-2016-09-21-840698321.html  View
793855 93488 CVE-2016-6668 CONFIRM:https://confluence.atlassian.com/doc/confluence-security-advisory-2016-09-21-849052104.html  View
793856 93488 CVE-2016-6668 CONFIRM:https://confluence.atlassian.com/jira/jira-and-hipchat-for-jira-plugin-security-advisory-2016-09-21-849052099.html  View
793857 93488 CVE-2016-6668 BID:93159  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
4554 JVNDB-2016-005327 Adobe Flash Player における任意のコードを実行される脆弱性 Adobe Flash Player には、解放済みメモリの使用 (Use-after-free) により、任意のコードを実行される脆弱性が存在します。 CVE-2016-6981 93488 10 9.8 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005327.html  View