Lucene search
+L

6 matches found

Check Point Advisories
Check Point Advisories
added 2022/06/21 12:0 a.m.11 views

Atlassian Bitbucket Data Center Insecure Deserialization (CVE-2022-26133)

A insecure deserialization vulnerability exists in Atlassian Bitbucket Data Center. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system via Java deserialization...

7.5CVSS5.7AI score0.71092EPSS
Exploits4
GithubExploit
GithubExploit
added 2022/05/09 12:7 p.m.844 views

Exploit for Deserialization of Untrusted Data in Atlassian Bitbucket_Data_Center

CVE-2022-26133 Description Atlassian Bitbucket Data Cent...

9.8CVSS7.2AI score0.71092EPSS
Exploits4
Circl
Circl
added 2022/04/20 10:25 p.m.11 views

CVE-2022-26133

creationtimestamp| type| source ---|---|--- 2022-04-20 22:25:54+00:00| seen| https://t.me/cibsecurity/41196 2022-05-09 12:12:21+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/2129 2022-05-12 11:01:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/5989...

9.8CVSS7.9AI score0.71092EPSS
Exploits4References9
Cvelist
Cvelist
added 2022/04/20 6:30 p.m.27 views

CVE-2022-26133

SharedSecretClusterAuthenticator in Atlassian Bitbucket Data Center versions 5.14.0 and later before 7.6.14, 7.7.0 and later prior to 7.17.6, 7.18.0 and later prior to 7.18.4, 7.19.0 and later prior to 7.19.4, and 7.20.0 allow a remote, unauthenticated attacker to execute arbitrary code via Java...

9.9AI score0.71092EPSS
Exploits4References2
CVE
CVE
added 2022/04/20 6:30 p.m.250 views

CVE-2022-26133

CVE-2022-26133 affects Atlassian Bitbucket Data Center via SharedSecretClusterAuthenticator. A remote, unauthenticated attacker can execute arbitrary code through Java deserialization. Vulnerable versions include: 5.14.0 and later before 7.6.14; 7.7.0 and later before 7.17.6; 7.18.0 and later bef...

9.8CVSS9.6AI score0.71092EPSS
Exploits4References2Affected Software1
Atlassian
Atlassian
added 2022/03/18 7:56 p.m.68 views

Bitbucket Data Center - Java Deserialization Vulnerability In Hazelcast - CVE-2022-26133

Update: 2022/04/08 23:00 UTC Coordinated Universal Time, +0 hours Assigned CVE-2022-26133 to this vulnerability, which was determined to be similar to CVE-2016-10750 yet slightly different and specific to Bitbucket Note the new CVE assignment does not change any other information in this advisory...

9.8CVSS3.2AI score0.71092EPSS
Exploits4
Rows per page
Query Builder