Tag :
Cyber Security

About CVE-2022-36804

Vulnerability Name Atlassian Bitbucket Command Injection Vulnerability (CVE-2022-36804)
Attack Type Command Injection
Time Discovered 2022-08-24
Updated Time 2022-08-29
CVE ID CVE-2022-36804

Summary

Recently, the Sangfor security team has detected a piece of information about a command injection vulnerability in Bitbucket Server and Bitbucket Data Center components.With access to public Bitbucket repositories or read access to private repositories, an attacker can execute arbitrary code by sending malicious HTTP requests and ultimately gain server access.

Affected Versions

7.0.0 ≤ Atlassian Bitbucket Server ≤ 8.3.0
7.0.0 ≤ Atlassian Bitbucket Data Center ≤ 8.3.0

Solution

The latest official version has been released, and affected users are advised to update and upgrade to the latest version in time. The link is as follows: https://confluence.atlassian.com/bitbucketserver/bitbucket-server-and-data-center-advisory-2022-08-24-1155489835.html

Related Links

https://jira.atlassian.com/browse/BSERV-13438

Listen To This Post

Search

Keyword maximum 256 character

Get in Touch

Get in Touch with Sangfor Team for Business Inquiry

Related Articles

New TellYouThePass Ransomware Variant Discovered In The Wild

Date : 25 Mar 2024
Read Now

New Mallox Ransomware Variant Discovered In The Wild

Date : 12 Mar 2024
Read Now

Multiple Vulnerabilities in VMware Products (CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, and CVE-2024-22255)

Date : 08 Mar 2024
Read Now

See Other Product

Best Darktrace Cyber Security Competitors and Alternatives in 2024
Sangfor Omni-Command
Cyber Command - NDR Platform
Endpoint Secure
Internet Access Gateway (IAG)
Sangfor Network Secure - Next Generation Firewall

Meet the Author

sangfor building image

Sangfor Technologies

Sangfor Technologies is a leading vendor of Cyber Security and Cloud Computing solutions. The majority of the blogs that you are seeing here are written by professionals working at Sangfor. We have a team of content writers, product managers and marketing experts who are taking care of writing articles on various topics that are relevant to our audience. Our team ensures that the articles published are factually correct and helpful to our customers and partners to know more about the recent trends on Cyber Security and Cloud, and how it can help their organizations.

  • facebook
  • twitter
  • linkedin
  • youtube
  • instagram
See Author's Detail