Threat Encyclopedia

Atlassian.Confluence.OGNL.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a Remote Code Execution Vulnerability in Atlassian Confluence.
The vulnerability is due to insufficient input validation while handling a malicious request. A remote attacker may be able to exploit this to execute arbitrary code via a crafted HTTP request.

affected-products-logoAffected Products

versions prior to
7.4.17
7.13.7
7.14.3
7.15.2
7.16.4
7.17.4
7.18.1

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor
https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html

CVE References

CVE-2022-26134

Telemetry logoTelemetry