Skip to content
/ CVE-2024-21689 Public

CVE-2024–21689 RCE Bamboo Data Center and Server Atlassian POC

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

salvadornakamura/CVE-2024-21689

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
README.md
README.md
 
 
exploit.txt
exploit.txt
 
 

Repository files navigation

#CVE-2024–21689 RCE Bamboo Data Center and Server Atlassian

CVSS Score - 7.6 🔥

Description

This High severity RCE (Remote Code Execution) vulnerability CVE-2024-21689 was introduced in versions 9.1.0, 9.2.0, 9.3.0, 9.4.0, 9.5.0, and 9.6.0 of Bamboo Data Center and Server. This RCE (Remote Code Execution) vulnerability, with a CVSS Score of 7.6, allows an authenticated attacker to execute arbitrary code which has high impact to confidentiality, high impact to integrity, high impact to availability, and requires user interaction.

Running the Script

  • Single URL Mode: 
    python3 exploit.py -u http://<target-ip>:8090 -c "whoami"
  • File Mode (for multiple IPs): 
    python3 exploit.py -f ips.txt -c "whoami"
  • Interactive Shell Mode: 
    python3 exploit.py -u http://<target-ip>:8090 --shell
  • Nuclei: 
    nuclei exploit.yaml -f file.txt

Contact

Contact me in TOX: 6FDB3C4D5E6F7G8H9I0J1K2L3M4N5O6P7Q8R9S0TQDQ2

About

CVE-2024–21689 RCE Bamboo Data Center and Server Atlassian POC

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published