• Confluence Security Advisory 2022-06-02

    Home » Forums » Cyber Security Information and Advisories » Cyber Security for Business users » Confluence Security Advisory 2022-06-02

    Author
    Topic
    Alex5723
    AskWoody Plus
    June 4, 2022 at 12:19 pm #2450819

    Confluence Server and Data Center – CVE-2022-26134 – Critical severity unauthenticated remote code execution vulnerability

    Confluence

    Confluence Server
    Confluence Data Center

    All supported versions of Confluence Server and Data Center are affected.
    Confluence Server and Data Center versions after 1.3.0 are affected.

    Atlassian rates the severity level of this vulnerability as critical

    Atlassian has been made aware of current active exploitation of a critical severity unauthenticated remote code execution vulnerability in Confluence Data Center and Server. The OGNL injection vulnerability allows an unauthenticated user to execute arbitrary code on a Confluence Server or Data Center instance.

    Fix
    We have taken the following steps to address this issue:

    Released versions 7.4.17, 7.13.7, 7.14.3, 7.15.2, 7.16.4, 7.17.4 and 7.18.1 which contain a fix for this issue…

    Reply | Quote
    Viewing 0 reply threads
    Author
    Replies
    • Paul T
      AskWoody MVP
      June 5, 2022 at 12:38 am #2450900

      Confluence is a document collaboration service.

      The issue is in their self hosted offering, not their cloud service (apparently).

      cheers, Paul

      1 user thanked author for this post.
      Alex5723
      Reply | Quote
    Viewing 0 reply threads
    Reply To: Confluence Security Advisory 2022-06-02

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    May 2025
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.