Uploaded image for project: 'SR for Bamboo - Development'
  1. SR for Bamboo - Development
  2. SRBAM-243

ScriptRunner for Bamboo Remote Code Execution Vulnerability

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Done
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 6.24.0, 6.8.2.1-p4
    • Labels:
      None
    • Critical Points:
      0

      Description

      A security vulnerability has been identified in ScriptRunner for Bamboo.

      A malicious authenticated Bamboo user could exploit this vulnerability to run arbitrary code inside the Bamboo Server instance.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned Unassigned
              Reporter:
              rlander Reece Lander
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: