Rewterz Threat Advisory – CVE-2022-43782 – Atlassian Crowd Vulnerability
November 23, 2022Rewterz Threat Advisory – Multiple Atlassian Confluence Vulnerabilities
November 24, 2022Rewterz Threat Advisory – CVE-2022-43782 – Atlassian Crowd Vulnerability
November 23, 2022Rewterz Threat Advisory – Multiple Atlassian Confluence Vulnerabilities
November 24, 2022Severity
High
Analysis Summary
CVE-2022-43781
Atlassian Bitbucket Server and Data Center could allow a remote attacker to execute arbitrary commands on the system, caused by a command injection vulnerability. By using environment variables, an attacker could exploit this vulnerability to inject and execute arbitrary commands on the system.
Impact
Gain Access
Indicators Of Compromise
CVE
- CVE-2022-43781
Affected Vendors
Atlassian
Affected Products
- Atlassian Bitbucket Server and Data Center 7.0.0
Remediation
Refer to Atlassian Security Advisory for patch, upgrade or suggested workaround information.