Atlassian released patches for two critical vulnerabilities affecting Bitbucket Server, Data Center, and Crowd products. These vulnerabilities are tracked as CVE-2022-43781 (Command Injection) and CVE-2022-43782 (Improper Authentication). Technical Details CVE-2022-43781 – A Command Injection vulnerability is addressed in Atlassian Bitbucket Server and Data Center in environment variables. An attacker with permission to...
Staying Ahead of Attackers
Run smooth and secure IT operations with the latest security intelligence about new vulnerabilities and threats, best practices, and recommended strategies.
SECURITY INTELLIGENCE FROM SECPOD LABS
Cyberattack surfaces are constantly evolving with an abundance of vulnerabilities. According to SecPod’s security research, the second quarter of 2022 saw a total of 5478 vulnerabilities with 7 zero days. With these enormous amounts of vulnerabilities, it is impossible for IT security admins to continuously monitor the vulnerabilities and get...