6 matches found
Atlassian Bitbucket Data Center Insecure Deserialization (CVE-2022-26133)
A insecure deserialization vulnerability exists in Atlassian Bitbucket Data Center. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system via Java deserialization...
Exploit for Deserialization of Untrusted Data in Atlassian Bitbucket_Data_Center
CVE-2022-26133 Description Atlassian Bitbucket Data Cent...
CVE-2022-26133
creationtimestamp| type| source ---|---|--- 2022-04-20 22:25:54+00:00| seen| https://t.me/cibsecurity/41196 2022-05-09 12:12:21+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/2129 2022-05-12 11:01:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/5989...
CVE-2022-26133
SharedSecretClusterAuthenticator in Atlassian Bitbucket Data Center versions 5.14.0 and later before 7.6.14, 7.7.0 and later prior to 7.17.6, 7.18.0 and later prior to 7.18.4, 7.19.0 and later prior to 7.19.4, and 7.20.0 allow a remote, unauthenticated attacker to execute arbitrary code via Java...
CVE-2022-26133
CVE-2022-26133 affects Atlassian Bitbucket Data Center via SharedSecretClusterAuthenticator. A remote, unauthenticated attacker can execute arbitrary code through Java deserialization. Vulnerable versions include: 5.14.0 and later before 7.6.14; 7.7.0 and later before 7.17.6; 7.18.0 and later bef...
Bitbucket Data Center - Java Deserialization Vulnerability In Hazelcast - CVE-2022-26133
Update: 2022/04/08 23:00 UTC Coordinated Universal Time, +0 hours Assigned CVE-2022-26133 to this vulnerability, which was determined to be similar to CVE-2016-10750 yet slightly different and specific to Bitbucket Note the new CVE assignment does not change any other information in this advisory...