CVE-2021-26067

Summary

Affected versions of Atlassian Bamboo allow an unauthenticated remote attacker to view a stack trace that may reveal the path for the home directory in disk and if certain files exists on the tmp directory, via a Sensitive Data Exposure vulnerability in the /chart endpoint. The affected versions are before version 7.2.2.

Affected Software

VendorProductVersion RangeStatus
AtlassianBamboounspecified < 7.2.2affected

Weaknesses

  • Sensitive Data Exposure

ADP Enrichment

CVE Program Container

Additional References

References