Known Vulnerabilities for Bitbucket by Atlassian
Listed below are 10 of the newest known vulnerabilities associated with "Bitbucket" by "Atlassian".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-36233 | The Microsoft Windows Installer for Atlassian Bitbucket Server and Data Center before version 6.10.9, 7.x before 7.6.4, and f... | 7.8 - HIGH | 2021-02-18 | 2021-02-24 |
| CVE-2020-14171 | Atlassian Bitbucket Server from version 4.9.0 before version 7.2.4 allows remote attackers to intercept unencrypted repositor... | 6.5 - MEDIUM | 2020-07-09 | 2020-07-15 |
| CVE-2020-14170 | Webhooks in Atlassian Bitbucket Server from version 5.4.0 before version 7.3.1 allow remote attackers to access the content o... | 4.3 - MEDIUM | 2020-07-09 | 2020-07-15 |
| CVE-2019-20097 | Bitbucket Server and Bitbucket Data Center versions starting from 1.0.0 before 5.16.11, from version 6.0.0 before 6.0.11, fro... | 8.8 - HIGH | 2020-01-15 | 2020-08-24 |
| CVE-2019-15012 | Bitbucket Server and Bitbucket Data Center from version 4.13. before 5.16.11, from version 6.0.0 before 6.0.11, from version ... | 8.8 - HIGH | 2020-01-15 | 2020-08-24 |
| CVE-2019-15010 | Bitbucket Server and Bitbucket Data Center versions starting from version 3.0.0 before version 5.16.11, from version 6.0.0 be... | 8.8 - HIGH | 2020-01-15 | 2020-08-24 |
| CVE-2019-15005 | The Atlassian Troubleshooting and Support Tools plugin prior to version 1.17.2 allows an unprivileged user to initiate period... | 4.3 - MEDIUM | 2019-11-08 | 2019-11-14 |
| CVE-2019-15000 | The commit diff rest endpoint in Bitbucket Server and Data Center before 5.16.10 (the fixed version for 5.16.x ), from 6.0.0 ... | 9.8 - CRITICAL | 2019-09-19 | 2020-08-24 |
| CVE-2019-3397 | Atlassian Bitbucket Data Center licensed instances starting with version 5.13.0 before 5.13.6 (the fixed version for 5.13.x),... | 9.1 - CRITICAL | 2019-06-03 | 2019-06-03 |
| CVE-2018-5225 | In browser editing in Atlassian Bitbucket Server from version 4.13.0 before 5.4.8 (the fixed version for 4.13.0 through 5.4.7... | 9.9 - CRITICAL | 2018-03-22 | 2018-04-20 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Atlassian | Bitbucket | 7.3.1 | All | All | All |
| Application | Atlassian | Bitbucket | 7.2.4 | All | All | All |
| Application | Atlassian | Bitbucket | 7.1.1 | All | All | All |
| Application | Atlassian | Bitbucket | 7.1.0 | All | All | All |
| Application | Atlassian | Bitbucket | 7.0.3 | All | All | All |
| Application | Atlassian | Bitbucket | 7.0.2 | All | All | All |
| Application | Atlassian | Bitbucket | 7.0.0 | All | All | All |
| Application | Atlassian | Bitbucket | 6.9.3 | All | All | All |
| Application | Atlassian | Bitbucket | 6.9.2 | All | All | All |
| Application | Atlassian | Bitbucket | 6.9.1 | All | All | All |
| Application | Atlassian | Bitbucket | 6.9.0 | All | All | All |
| Application | Atlassian | Bitbucket | 6.8.4 | All | All | All |
| Application | Atlassian | Bitbucket | 6.8.3 | All | All | All |
| Application | Atlassian | Bitbucket | 6.8.2 | All | All | All |
| Application | Atlassian | Bitbucket | 6.8.0 | All | All | All |
| Application | Atlassian | Bitbucket | 6.7.5 | All | All | All |
| Application | Atlassian | Bitbucket | 6.7.4 | All | All | All |
| Application | Atlassian | Bitbucket | 6.7.3 | All | All | All |
| Application | Atlassian | Bitbucket | 6.7.2 | All | All | All |
| Application | Atlassian | Bitbucket | 6.7.1 | All | All | All |