Critical severity9.8NVD Advisory· Published Feb 8, 2016· Updated May 6, 2026
CVE-2015-8360
CVE-2015-8360
Description
An unspecified resource in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0 allows remote attackers to execute arbitrary Java code via serialized data to the JMS port.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- jira.atlassian.com/browse/BAM-17101nvdPatchVendor Advisory
- confluence.atlassian.com/bamboo/bamboo-security-advisory-2016-01-20-794376535.htmlnvdVendor Advisory
- packetstormsecurity.com/files/135352/Bamboo-Deserialization-Missing-Authentication-Checks.htmlnvd
- www.securityfocus.com/archive/1/537347/100/0/threadednvd
News mentions
0No linked articles in our index yet.