← back
CVE-2015-5603

CVE-2015-5603

50Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 59%
from disclosure to weapon37 days
Published on NVDSep 21
1st PoC+37d
metasploit+37d
exploitation probability
59%top 1% of all CVEs
observed exploitation
nono source reports it
5 public exploit(s)
The HipChat for JIRA plugin before 6.30.0 for Atlassian JIRA allows remote authenticated users to execute arbitrary Java code via unspecified vectors, related to "Velocity Template Injection Vulnerability."
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.