Primary

Context

Atlassian Bamboo Data Center Remote Code Execution Vulnerability

Vulnerability

Patched

A remote code execution vulnerability has been identified in Atlassian Bamboo Data Center. This vulnerability affects versions 9.6.0, 10.0.0, 10.1.0, 10.2.0, 11.0.0, 11.1.0, 12.0.0, and 12.1.0. It allows authenticated attackers to execute malicious code on the remote system.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected system.

Remediation

Atlassian recommends upgrading to the latest version of Bamboo Data Center. If that's not possible, users should upgrade to one of the following supported fixed versions: 9.6.24, 10.2.16, or 12.1.3.

Added: Mar 17, 2026, 6:28 PM

Updated: Mar 17, 2026, 6:28 PM

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

10.0

exploitability

5.2

remediation

7.7

relevance

4.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

10.0

exploitability

5.2

remediation

7.7

relevance

4.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Atlassian Bamboo Data Center Remote Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Atlassian Bamboo Data Center

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating