VYPR

Bitbucket Data Center

by Bitbucket

CVEs (4)

  • CVE-2022-43781CriNov 17, 2022
    risk 0.75cvss 9.8epss 0.98

    There is a command injection vulnerability using environment variables in Bitbucket Server and Data Center. An attacker with permission to control their username can exploit this issue to execute arbitrary code on the system. This vulnerability can be unauthenticated if the…

  • CVE-2019-15000CriSep 19, 2019
    risk 0.64cvss 9.8epss 0.08

    The commit diff rest endpoint in Bitbucket Server and Data Center before 5.16.10 (the fixed version for 5.16.x ), from 6.0.0 before 6.0.10 (the fixed version for 6.0.x), from 6.1.0 before 6.1.8 (the fixed version for 6.1.x), from 6.2.0 before 6.2.6 (the fixed version for 6.2.x),…

  • CVE-2019-15010HigJan 15, 2020
    risk 0.57cvss 8.8epss 0.03

    Bitbucket Server and Bitbucket Data Center versions starting from version 3.0.0 before version 5.16.11, from version 6.0.0 before 6.0.11, from version 6.1.0 before 6.1.9, from version 6.2.0 before 6.2.7, from version 6.3.0 before 6.3.6, from version 6.4.0 before 6.4.4, from…

  • CVE-2024-21684MedJul 24, 2024
    risk 0.28cvss 4.3epss 0.00

    There is a low severity open redirect vulnerability within affected versions of Bitbucket Data Center. Versions of Bitbucket DC from 8.0.0 to 8.9.12 and 8.19.0 to 8.19.1 are affected by this vulnerability. It is patched in 8.9.13 and 8.19.2. This open redirect vulnerability,…