CVE-2023-22513

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Sep 19, 2023

Updated: Sep 25, 2023

Summary

CVE-2023-22513 is a high severity Remote Code Execution (RCE) vulnerability affecting versions 8.0.0 and below of Bitbucket Data Center and Server. With a CVSS Score of 8.5, this issue permits authenticated attackers to execute arbitrary code, posing significant threats to confidentiality, integrity, and availability. No user interaction is required. Atlassian urges customers to upgrade to the latest version or to one of the specified fixed versions: 8.9.5, 8.10.5, 8.11.4, 8.12.2, 8.13.1, 8.14.0, or any fix version for versions 8.0 and below. This vulnerability was discovered through Atlassian's Bug Bounty program by a private user.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

Atlassian Corporation Pty Ltd.

Advisories, Assessments, and Mitigations

Back to Vulnerability Database