Vulnerability in Atlassian Bamboo Data Center
CVE-2026-21571
This Critical severity OS Command Injection vulnerability was introduced in versions 9.6.0, 10.0.0, 10.1.0, 10.2.0, 11.0.0, 11.1.0, 12.0.0, and 12.1.0 of Bamboo Data Center. This RCE (Remote Code Execution) vulnerability, with a CVSS…
EPSS: 0.011 (78.3th percentile) — read the EPSS interpretation.
Affected products
- Atlassian Bamboo Data Center — versions 12.1.0 to 12.1.3, 12.0.0 to 12.0.2, 11.0.0 to 11.0.8