BDU:2022-05364
Scores
EPSS Score
0.0000
CVSS
3.x 9.8
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
All CVSS Scores
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Description
Уязвимость интерфейса API инструмента для размещения кода, управления и совместной работы на основе Git Bitbucket Server and Data Center связана с ошибками при обработке входных данных. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, выполнить произвольный код с помощью специально сформированного HTTP-запроса
Sources
Related Vulnerabilities
Vulnerable Software
Type: Configuration
Vendor: atlassian
Product: bitbucket server and data center
Operating System: * *
{
"version_end_excluding": "7.21.4",
"version_start_including": "7.18.0"
}Source: bdu
Type: Configuration
Vendor: atlassian
Product: bitbucket server and data center
Operating System: * *
{
"version_end_excluding": "8.0.3",
"version_start_including": "8.0.0"
}Source: bdu
Type: Configuration
Vendor: atlassian
Product: bitbucket server and data center
Operating System: * *
{
"version_end_excluding": "8.1.3",
"version_start_including": "8.1.0"
}Source: bdu
Type: Configuration
Vendor: atlassian
Product: bitbucket server and data center
Operating System: * *
{
"version_end_excluding": "8.2.2",
"version_start_including": "8.2.0"
}Source: bdu
Type: Configuration
Vendor: atlassian
Product: bitbucket server and data center
Operating System: * *
{
"version_end_excluding": "8.3.1",
"version_start_including": "8.3.0"
}Source: bdu
Type: Configuration
Vendor: atlassian
Product: bitbucket server and data center
Operating System: * *
{
"version_end_excluding": "7.6.17",
"version_start_including": "7.0.0"
}Source: bdu
Type: Configuration
Vendor: atlassian
Product: bitbucket server and data center
Operating System: * *
{
"version_end_excluding": "7.17.10",
"version_start_including": "7.7.0"
}Source: bdu