CVE-2015-8361
- EPSS 2.84%
- Veröffentlicht 08.02.2016 19:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple unspecified services in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0 do not require authentication, which allows remote attackers to obtain sensitive information, modify settings, or manage build agents via unknown vectors involvin...
CVE-2015-8360
- EPSS 2.98%
- Veröffentlicht 08.02.2016 19:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
An unspecified resource in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0 allows remote attackers to execute arbitrary Java code via serialized data to the JMS port.
CVE-2014-9757
- EPSS 2.34%
- Veröffentlicht 08.02.2016 19:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Ignite Realtime Smack XMPP API, as used in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0, allows remote configured XMPP servers to execute arbitrary Java code via serialized data in an XMPP message.
CVE-2012-2926
- EPSS 66.58%
- Veröffentlicht 22.05.2012 15:55:02
- Zuletzt bearbeitet 16.06.2026 23:42:22
Atlassian JIRA before 5.0.1; Confluence before 3.5.16, 4.0 before 4.0.7, and 4.1 before 4.1.10; FishEye and Crucible before 2.5.8, 2.6 before 2.6.8, and 2.7 before 2.7.12; Bamboo before 3.3.4 and 3.4.x before 3.4.5; and Crowd before 2.0.9, 2.1 before...