{"id":26650,"date":"2022-09-22T15:58:56","date_gmt":"2022-09-22T13:58:56","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=26650"},"modified":"2022-09-22T15:58:56","modified_gmt":"2022-09-22T13:58:56","slug":"pre-auth-remote-command-execution-cve-2022-36804-in-atlassian-bitbucket","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2022\/09\/22\/pre-auth-remote-command-execution-cve-2022-36804-in-atlassian-bitbucket\/","title":{"rendered":"Pre Auth Remote Command Execution (CVE-2022-36804) in Atlassian Bitbucket"},"content":{"rendered":"<p><img decoding=\"async\" title=\"Sicherheit (Pexels, allgemeine Nutzung)\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline\" alt=\"Sicherheit (Pexels, allgemeine Nutzung)\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2021\/04\/Sicherheit_klein.jpg\" width=\"200\" align=\"left\">[<a href=\"https:\/\/www.borncity.com\/blog\/2022\/09\/22\/pre-auth-remote-command-execution-cve-2022-36804-in-atlassian-bitbucket\/\" target=\"_blank\" rel=\"noopener\">German<\/a>]There is a critical remote command execution vulnerability (CVE-2022-36804) in the version management for software development projects, Atlassian Bitbucket. Atlassian had already published a security advisory and a product update for the vulnerability, which was rated critical, at the end of August 2022. Now the discoverers seem to have released details about the vulnerability.<\/p>\n<p><!--more--><\/p>\n<h2>Atlassian Bitbucket<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" alt=\"\" src=\"https:\/\/vg05.met.vgwort.de\/na\/a6693ac7e1fe41d6adc7505f7ad4098d\" width=\"1\" height=\"1\"><a href=\"https:\/\/www.atlassian.com\/software\/bitbucket\" target=\"_blank\" rel=\"noopener\">Atlassian Bitbucket<\/a>&nbsp; is a web-based online version management service for software development projects. The service was originally developed as a Mercurial-only system, but added support for Git on October 3, 2011. <a href=\"https:\/\/en.wikipedia.org\/wiki\/Bitbucket\" target=\"_blank\" rel=\"noopener\">Wikipedia<\/a> states that over 330,000 teams of over 2.5 million developers were working with Bitbucket in 2014 &#8211; I don't have more recent data. <\/p>\n<h2>Atlassian security warning on Bitbucket<\/h2>\n<p>While doing some quick research today, I came across the security alert <a href=\"https:\/\/confluence.atlassian.com\/bitbucketserver\/bitbucket-server-and-data-center-advisory-2022-08-24-1155489835.html\" target=\"_blank\" rel=\"noopener\">Bitbucket Server and Data Center &#8211; Command injection vulnerability &#8211; CVE-2022-36804<\/a> from Atlassian. As of August 24, 2022 people are warning Command Injection vulnerability CVE-2022-36804 that affects both Bitbucket Server and Bitbucket Data Center. They state:<\/p>\n<blockquote>\n<p>This advisory discloses a critical security vulnerability introduced in version 7.0.0 of Bitbucket Server and Data Center. All versions released after 6.10.17, including 7.0.0 and newer, are affected by this vulnerability. This means that all instances running a version between 7.0.0 and 8.3.0 inclusive are affected by this vulnerability.<\/p>\n<\/blockquote>\n<p>A command injection vulnerability exists in multiple Bitbucket Server and Data Center API endpoints. An attacker with access to a public repository or with read access to a private Bitbucket repository can execute arbitrary code by sending a malicious HTTP request.<\/p>\n<p>All versions of Bitbucket Server and Datacenter released after 6.10.17, including 7.0.0 and later, are affected by this vulnerability. This means that all instances running a version between 7.0.0 and 8.3.0 inclusive are affected by this vulnerability. Atlassian has released bug fixes for all affected versions of Bitbucket Server and Datacenter, which are listed <a href=\"https:\/\/confluence.atlassian.com\/bitbucketserver\/bitbucket-server-and-data-center-advisory-2022-08-24-1155489835.html\" target=\"_blank\" rel=\"noopener\">here<\/a>.<\/p>\n<h2>Details on  CVE-2022-36804<\/h2>\n<p>Just came across the <a href=\"https:\/\/twitter.com\/_r_netsec\/status\/1572804910625726464\" target=\"_blank\" rel=\"noopener\">tweet<\/a> linking to the article <a href=\"https:\/\/blog.assetnote.io\/2022\/09\/14\/rce-in-bitbucket-server\/\" target=\"_blank\" rel=\"noopener\">Breaking Bitbucket: Pre Auth Remote Command Execution (CVE-2022-36804<\/a> from assetnote.io. In a blog post dated September 14, 2022, their security researchers disclose the details of this vulnerability.<\/p>\n<p><a href=\"https:\/\/twitter.com\/_r_netsec\/status\/1572804910625726464\" target=\"_blank\" rel=\"noopener\"><img decoding=\"async\" src=\"https:\/\/i.imgur.com\/Yd7sdRU.png\"><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]There is a critical remote command execution vulnerability (CVE-2022-36804) in the version management for software development projects, Atlassian Bitbucket. Atlassian had already published a security advisory and a product update for the vulnerability, which was rated critical, at the end &hellip; <a href=\"https:\/\/borncity.com\/win\/2022\/09\/22\/pre-auth-remote-command-execution-cve-2022-36804-in-atlassian-bitbucket\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580],"tags":[69],"class_list":["post-26650","post","type-post","status-publish","format-standard","hentry","category-security","tag-security"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/26650","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=26650"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/26650\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=26650"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=26650"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=26650"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}