Security Advisory

CVE-2017-18108

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-29 14:04:53

Last updated 2024-09-16 22:30:08

Assigner atlassian

State PUBLISHED

Description

The administration SMTP configuration resource in Atlassian Crowd before version 2.10.2 allows remote attackers with administration rights to execute arbitrary code via a JNDI injection.

← Browse all CVEs View on cve.org ↗