Affected versions of Atlassian Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the file upload request feature of code reviews.

The affected versions are before version 4.7.4, and from version 4.8.0 before 4.8.5.

Affected versions:

• version < 4.7.4
• 4.8.0 ≤ version < 4.8.5

Fixed versions:

• 4.7.4
• 4.8.5
• 4.9.0