VYPR
Critical severity9.8NVD Advisory· Published Apr 20, 2022· Updated Jun 17, 2026

CVE-2022-26133

CVE-2022-26133

Description

SharedSecretClusterAuthenticator in Atlassian Bitbucket Data Center versions 5.14.0 and later before 7.6.14, 7.7.0 and later prior to 7.17.6, 7.18.0 and later prior to 7.18.4, 7.19.0 and later prior to 7.19.4, and 7.20.0 allow a remote, unauthenticated attacker to execute arbitrary code via Java deserialization.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Atlassian/Bitbucket Data Centerllm-fuzzy2 versions
    5.14.0 and later before 7.6.14, 7.7.0 and later prior to 7.17.6, 7.18.0 and later prior to 7.18.4, 7.19.0 and later prior to 7.19.4, and 7.20.0+ 1 more
    • (no CPE)range: 5.14.0 and later before 7.6.14, 7.7.0 and later prior to 7.17.6, 7.18.0 and later prior to 7.18.4, 7.19.0 and later prior to 7.19.4, and 7.20.0
    • (no CPE)range: 5.14.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.