Advertisement
Top
image credit: Adobe Stock

CISA Warns of Attacks Exploiting Recent Atlassian Bitbucket Vulnerability

October 3, 2022

Via: Security Week
Category:

Atlassian Bitbucket is a Git-based repository management solution that provides source code hosting and sharing capabilities.

Tracked as CVE-2022-36804 (CVSS score of 9.9), the now-exploited vulnerability is described as a command injection bug that impacts multiple API endpoints of Bitbucket Server and Data Center.

“An attacker with access to a public Bitbucket repository or with read permissions to a private one can execute arbitrary code by sending a malicious HTTP request,” Atlassian explains.

Read More on Security Week

RELATED PUBLICATIONS

Google fixed critical Chrome vulnerability CVE-2024-4058
Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes
Palo Alto Networks Warns of Exploited Firewall Vulnerability

Latest Publications

Chinese government website security is often worryingly bad, say Chinese researchers
Indonesia sneakily buys spyware, claims Amnesty International
97% of security leaders have increased SaaS security budgets
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!