Information Disclosure Vulnerability in Atlassian Hipchat Integration Plugin

Information Disclosure Vulnerability in Atlassian Hipchat Integration Plugin

CVE-2016-6668 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

The Atlassian Hipchat Integration Plugin for Bitbucket Server 6.26.0 before 6.27.5, 6.28.0 before 7.3.7, and 7.4.0 before 7.8.17; Confluence HipChat plugin 6.26.0 before 7.8.17; and HipChat for JIRA plugin 6.26.0 before 7.8.17 allows remote attackers to obtain the secret key for communicating with HipChat instances by reading unspecified pages.

Learn more about our Cis Benchmark Audit For Server Software.