CVE Database · CVE-2014-9757
CVSS v3.1
N/A
EPSS
2.34%
Published
Feb 8, 2016
Modified
May 6, 2026
Public PoC / Exploit (1)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
The Ignite Realtime Smack XMPP API, as used in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0, allows remote configured XMPP servers to execute arbitrary Java code via serialized data in an XMPP message.
Weaknesses (CWE)
Affected Products (90)
References (8)
...and 40 more
