CVE-2018-25332

critical

Published 2026-05-17 · Modified 2026-05-27

CVSS v3

9.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2

—

VIR risk

9.8

Description

GitBucket 4.23.1 contains an unauthenticated remote code execution vulnerability that allows attackers to execute arbitrary commands by exploiting weak secret token generation and insecure file upload functionality. Attackers can brute-force the Blowfish encryption key, upload a malicious JAR plugin via the git-lfs endpoint, and execute system commands through an exposed exploit endpoint.

Predictions

Exploit likelihood

97%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: disclosure@vulncheck.com — https://www.exploit-db.com/exploits/44668

Application impact

Vendor	Product	Versions	Fixed
gitbucket	gitbucket	`{"endExcluding":"4.24.0"}`	`4.24.0`

References

https://github.com/gitbucket/gitbucket
https://security.szurek.pl/
https://www.exploit-db.com/exploits/44668
https://www.vulncheck.com/advisories/gitbucket-unauthenticated-remote-code-execution

CWEs

CWE-306

Verify integrity in audit chain (admin only). AS-IS.