Vulnerability in Atlassian Bamboo
CVE-2017-18080
The saveConfigureSecurity resource in Atlassian Bamboo before version 6.3.1 allows remote attackers to modify security settings via a Cross-site request forgery (CSRF) vulnerability.
EPSS: 0.001 (34.0th percentile) — read the EPSS interpretation.
Affected products
- Atlassian Bamboo — versions prior to 6.3.1
References
- jira.atlassian.com/browse/BAM-19664 (x_refsource_CONFIRM)