CVE Database · CVE-2015-8361
CVSS v3.1
N/A
EPSS
2.84%
Published
Feb 8, 2016
Modified
May 6, 2026
Public PoC / Exploit (1)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Multiple unspecified services in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0 do not require authentication, which allows remote attackers to obtain sensitive information, modify settings, or manage build agents via unknown vectors involving the JMS port.
Weaknesses (CWE)
Affected Products (90)
References (8)
...and 40 more
