3 matches found
CVE-2021-26067
CVE-2021-26067 affects Atlassian Bamboo before 7.2.2, where an unauthenticated attacker can trigger a stack trace through the /chart endpoint, potentially exposing the home directory path and certain files in the tmp directory (Sensitive Data Exposure). The issue is rooted in the handling of the ...
Accessing the URL /chart?filename=<file_name> exposes sensitive information - CVE-2021-26067
Affected versions of Atlassian Bamboo allow an unauthenticated remote attacker to view a stack trace that may reveal the path for the home directory in disk and if certain files exists on the tmp directory, via a Sensitive Data Exposure vulnerability in the /chart endpoint. The affected versions...
Accessing the URL /chart?filename=<file_name> exposes sensitive information - CVE-2021-26067
Affected versions of Atlassian Bamboo allow an unauthenticated remote attacker to view a stack trace that may reveal the path for the home directory in disk and if certain files exists on the tmp directory, via a Sensitive Data Exposure vulnerability in the /chart endpoint. The affected versions...