Vulnerabilities > Atlassian > Bamboo > 5.14.1

DATE CVE VULNERABILITY TITLE RISK
2017-12-13 CVE-2017-14589 Improper Input Validation vulnerability in Atlassian Bamboo
It was possible for double OGNL evaluation in FreeMarker templates through Struts FreeMarker tags to occur.
network
atlassian CWE-20
6.8
6.8
2017-06-14 CVE-2017-8907 Incorrect Authorization vulnerability in Atlassian Bamboo
Atlassian Bamboo 5.x before 5.15.7 and 6.x before 6.0.1 did not correctly check if a user creating a deployment project had the edit permission and therefore the rights to do so.
network
low complexity
atlassian CWE-863
6.5
6.5