Description
Affected versions of Atlassian Fisheye/Crucible allow remote attackers to achieve Regex Denial of Service via user-supplied regex in EyeQL. The affected versions are before version 4.8.4.
Affected products
- Atlassian / Crucibleunspecified – 4.8.4
- Atlassian / Fisheyeunspecified – 4.8.4