| Max CVSS | 9.0 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-14590 | 9.0 |
Bamboo did not check that the name of a branch in a Mercurial repository contained argument parameters. An attacker who has permission to create a repository in Bamboo, edit an existing plan that has a non-linked Mercurialrepository, create or edit a
|
03-10-2019 - 00:03 | 13-12-2017 - 15:29 | |
| CVE-2017-14589 | 6.8 |
It was possible for double OGNL evaluation in FreeMarker templates through Struts FreeMarker tags to occur. An attacker who has restricted administration rights to Bamboo or who hosts a website that a Bamboo administrator visits, is able to exploit t
|
10-01-2018 - 23:43 | 13-12-2017 - 15:29 |