CVE-2023-22506

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jul 19, 2023
Updated: Jul 31, 2023
CWE ID 94

Summary

CVE-2023-22506 is a high severity Injection and RCE (Remote Code Execution) vulnerability that affects version 8.0.0 of Bamboo Data Center. This vulnerability allows an authenticated attacker to modify system call actions and execute arbitrary code, posing a high risk to confidentiality, integrity, and availability without requiring user interaction. To remediate the issue, Atlassian recommends upgrading the instance to the latest version or one of the fixed versions: 9.2.3 and 9.3.1. Upgrading can be done by downloading the latest version of Bamboo Data Center and Bamboo Server from the Atlassian download center. The vulnerability has a CVSS Score of 7.5 and its impact is rated as high for all aspects - confidentiality, integrity, and availability.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-22506 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options