Critical severity9.8NVD Advisory· Published Nov 27, 2017· Updated May 13, 2026

CVE-2017-14586

Description

The Hipchat for Mac desktop client is vulnerable to client-side remote code execution via video call link parsing. Hipchat for Mac desktop clients at or above version 4.0 and before version 4.30 are affected by this vulnerability.

Affected products

Atlassian/Hipchat for Mac desktop clientv5
Range: 4.0 <= version < 4.30

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/101947nvdThird Party AdvisoryVDB Entry
confluence.atlassian.com/hc/hipchat-server-security-advisory-2017-11-22-939946293.htmlnvdVendor Advisory
jira.atlassian.com/browse/HCPUB-3473nvdIssue TrackingVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000