Details
-
Type:
Public Security Vulnerability
-
Status: Published (View Workflow)
-
Priority:
Low
-
Resolution: Fixed
-
Affects Version/s: 7.2.1
-
Fix Version/s: 7.2.2
-
Component/s: None
-
CVSS Score:5.3
-
CVSS Severity:Medium
Description
Affected versions of Atlassian Bamboo allow an unauthenticated remote attacker to view a stack trace that may reveal the path for the home directory in disk and if certain files exists on the tmp directory, via a Sensitive Data Exposure vulnerability in the /chart endpoint.
The affected versions are before version 7.2.2.
Affected versions:
- version < 7.2.2
Fixed versions:
- 7.2.2