CVE-2017-18080

UNRATED

Description

The saveConfigureSecurity resource in Atlassian Bamboo before version 6.3.1 allows remote attackers to modify security settings via a Cross-site request forgery (CSRF) vulnerability.

Affected products

Atlassian / Bambooprior to 6.3.1 – prior to 6.3.1

References

MISChttps://jira.atlassian.com/browse/BAM-19664