CVE-2022-36804
8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Multiple API endpoints in Atlassian Bitbucket Server and Data Center 7.0.0 before version 7.6.17, from version 7.7.0 before version 7.17.10, from version 7.18.0 before version 7.21.4, from version 8.0.0 before version 8.0.3, from version 8.1.0 before version 8.1.3, and from version 8.2.0 before version 8.2.2, and from version 8.3.0 before 8.3.1 allows remote attackers with read permissions to a public or private Bitbucket repository to execute arbitrary code by sending a malicious HTTP request. This vulnerability was reported via our Bug Bounty Program by TheGrandPew.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Atlassian | Bitbucket Server | 7.0.0 < unspecified | affected |
| Atlassian | Bitbucket Server | unspecified < 7.6.17 | affected |
| Atlassian | Bitbucket Server | 7.7.0 < unspecified | affected |
| Atlassian | Bitbucket Server | unspecified < 7.17.10 | affected |
| Atlassian | Bitbucket Server | 7.18.0 < unspecified | affected |
| Atlassian | Bitbucket Server | unspecified < 7.21.4 | affected |
| Atlassian | Bitbucket Server | 8.0.0 < unspecified | affected |
| Atlassian | Bitbucket Server | unspecified < 8.0.3 | affected |
| Atlassian | Bitbucket Server | 8.1.0 < unspecified | affected |
| Atlassian | Bitbucket Server | unspecified < 8.1.3 | affected |
| Atlassian | Bitbucket Server | 8.2.0 < unspecified | affected |
| Atlassian | Bitbucket Server | unspecified < 8.2.2 | affected |
| Atlassian | Bitbucket Server | 8.3.0 < unspecified | affected |
| Atlassian | Bitbucket Server | unspecified < 8.3.1 | affected |
| Atlassian | Bitbucket Data Center | 7.0.0 < unspecified | affected |
| Atlassian | Bitbucket Data Center | unspecified < 7.6.17 | affected |
| Atlassian | Bitbucket Data Center | 7.7.0 < unspecified | affected |
| Atlassian | Bitbucket Data Center | unspecified < 7.17.10 | affected |
| Atlassian | Bitbucket Data Center | 7.18.0 < unspecified | affected |
| Atlassian | Bitbucket Data Center | unspecified < 7.21.4 | affected |
| Atlassian | Bitbucket Data Center | 8.0.0 < unspecified | affected |
| Atlassian | Bitbucket Data Center | unspecified < 8.0.3 | affected |
| Atlassian | Bitbucket Data Center | 8.1.0 < unspecified | affected |
| Atlassian | Bitbucket Data Center | unspecified < 8.1.3 | affected |
| Atlassian | Bitbucket Data Center | 8.2.0 < unspecified | affected |
| Atlassian | Bitbucket Data Center | unspecified < 8.2.2 | affected |
| Atlassian | Bitbucket Data Center | 8.3.0 < unspecified | affected |
| Atlassian | Bitbucket Data Center | unspecified < 8.3.1 | affected |
Weaknesses
- Remote Code Execution
ADP Enrichment
CVE Program Container
Additional References
- https://jira.atlassian.com/browse/BSERV-13438
- http://packetstormsecurity.com/files/168470/Bitbucket-Git-Command-Injection.html
- http://packetstormsecurity.com/files/171453/Bitbucket-7.0.0-Remote-Command-Execution.html
CISA ADP Vulnrichment
- SSVC:
- Exploitation: active
- Automatable: no
- Technical Impact: total
Additional References
References
- https://jira.atlassian.com/browse/BSERV-13438
- http://packetstormsecurity.com/files/168470/Bitbucket-Git-Command-Injection.html
- http://packetstormsecurity.com/files/171453/Bitbucket-7.0.0-Remote-Command-Execution.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.