CVE-2022-43781

2022-11-1700:15:18

CWE-77

[email protected]

web.nvd.nist.gov

117

cve-2022-43781

command injection

bitbucket

data center

environment variables

security vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.532 Medium

EPSS

Percentile

97.6%

JSON

There is a command injection vulnerability using environment variables in Bitbucket Server and Data Center. An attacker with permission to control their username can exploit this issue to execute arbitrary code on the system. This vulnerability can be unauthenticated if the Bitbucket Server and Data Center instance has enabled “Allow public signup”.

Affected configurations

NVD

Node

atlassianbitbucketRange7.0.0–7.6.19

atlassianbitbucketRange7.7.0–7.17.12

atlassianbitbucketRange7.18.0–7.21.6

atlassianbitbucketRange7.22.0–8.0.5

atlassianbitbucketRange8.1.0–8.1.5

atlassianbitbucketRange8.2.0–8.2.4

atlassianbitbucketRange8.3.0–8.3.3

atlassianbitbucketRange8.4.0–8.4.2

CPENameOperatorVersion
atlassian:bitbucketatlassian bitbucketlt7.6.19
atlassian:bitbucketatlassian bitbucketlt7.17.12
atlassian:bitbucketatlassian bitbucketlt7.21.6
atlassian:bitbucketatlassian bitbucketlt8.0.5
atlassian:bitbucketatlassian bitbucketlt8.1.5
atlassian:bitbucketatlassian bitbucketlt8.2.4
atlassian:bitbucketatlassian bitbucketlt8.3.3
atlassian:bitbucketatlassian bitbucketlt8.4.2

CPE	Name	Operator	Version
atlassian:bitbucket	atlassian bitbucket	lt	7.6.19
atlassian:bitbucket	atlassian bitbucket	lt	7.17.12
atlassian:bitbucket	atlassian bitbucket	lt	7.21.6
atlassian:bitbucket	atlassian bitbucket	lt	8.0.5
atlassian:bitbucket	atlassian bitbucket	lt	8.1.5
atlassian:bitbucket	atlassian bitbucket	lt	8.2.4
atlassian:bitbucket	atlassian bitbucket	lt	8.3.3
atlassian:bitbucket	atlassian bitbucket	lt	8.4.2

CNA Affected

[
  {
    "vendor": "Atlassian",
    "product": "Bitbucket Data Center",
    "versions": [
      {
        "version": "before 7.0",
        "status": "unaffected"
      },
      {
        "version": "before 7.17.12",
        "status": "affected"
      },
      {
        "version": "before 7.21.6",
        "status": "affected"
      },
      {
        "version": "before 7.6.19",
        "status": "affected"
      },
      {
        "version": "before 8.0.5",
        "status": "affected"
      },
      {
        "version": "before 8.1.5",
        "status": "affected"
      },
      {
        "version": "before 8.2.4",
        "status": "affected"
      },
      {
        "version": "before 8.3.3",
        "status": "affected"
      },
      {
        "version": "before 8.4.2",
        "status": "affected"
      },
      {
        "version": "before 8.5.0",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Atlassian",
    "product": "Bitbucket Server",
    "versions": [
      {
        "version": "before 7.0",
        "status": "unaffected"
      },
      {
        "version": "before 7.17.12",
        "status": "affected"
      },
      {
        "version": "before 7.21.6",
        "status": "affected"
      },
      {
        "version": "before 7.6.19",
        "status": "affected"
      },
      {
        "version": "before 8.0.5",
        "status": "affected"
      },
      {
        "version": "before 8.1.5",
        "status": "affected"
      },
      {
        "version": "before 8.2.4",
        "status": "affected"
      },
      {
        "version": "before 8.3.3",
        "status": "affected"
      },
      {
        "version": "before 8.4.2",
        "status": "affected"
      },
      {
        "version": "before 8.5.0",
        "status": "affected"
      }
    ]
  }
]