CVE-2022-26134

Published Jun 3, 2022

Last updated 5 months ago

Exploit known CVSS critical 9.8

Overview

Description: In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are from 1.3.0 before 7.4.17, from 7.13.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and from 7.18.0 before 7.18.1.
Source: security@atlassian.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Known exploits

Data from CISA

Vulnerability name: Atlassian Confluence Server and Data Center Remote Code Execution Vulnerability
Exploit added on: Jun 2, 2022
Exploit action due: Jun 6, 2022
Required action: Immediately block all internet traffic to and from affected products AND apply the update per vendor instructions [https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html] OR remove the affected products by the due date on the right. Note: Once the update is successfully deployed, agencies can reassess the internet blocking rules.

Weaknesses

nvd@nist.gov: CWE-917

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B80A5DD-66A4-4BA9-8BE0-CD862048B497",
            "versionEndExcluding": "7.4.17",
            "versionStartIncluding": "1.3"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C98724BE-9503-4E81-B427-79410CDBF2B9",
            "versionEndExcluding": "7.13.7",
            "versionStartIncluding": "7.13.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12E753EB-0D31-448B-B8DE-0A95434CC97C",
            "versionEndExcluding": "7.14.3",
            "versionStartIncluding": "7.14.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE114494-74F0-454C-AAC4-8B8E5F1C67D0",
            "versionEndExcluding": "7.15.2",
            "versionStartIncluding": "7.15.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90BB3572-29ED-415F-AD34-00EB76271F9C",
            "versionEndExcluding": "7.16.4",
            "versionStartIncluding": "7.16.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30EF756A-B4E9-4E5D-BE6F-02CE95F12C9C",
            "versionEndExcluding": "7.17.4",
            "versionStartIncluding": "7.17.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_data_center:7.18.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A56B6A10-E23F-49EF-8C07-1AEDFCAE2788"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3AC4BC00-4067-4C75-AF15-A754C2713B02",
            "versionEndExcluding": "7.4.17",
            "versionStartIncluding": "1.3"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4587786A-9864-405F-8C0F-31D930651F59",
            "versionEndExcluding": "7.13.7",
            "versionStartIncluding": "7.13.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5DCDEC6C-4515-4CAA-9D82-7BF68A3AAE7E",
            "versionEndExcluding": "7.14.3",
            "versionStartIncluding": "7.14.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9948F94-DF67-4E3C-8CD4-417D57FBC60F",
            "versionEndExcluding": "7.15.2",
            "versionStartIncluding": "7.15.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30E63ECB-85A8-4D41-A9B5-9FFF18D9CDB1",
            "versionEndExcluding": "7.16.4",
            "versionStartIncluding": "7.16.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "694171BD-FAE2-472C-8183-04BCA2F7B9A7",
            "versionEndExcluding": "7.17.4",
            "versionStartIncluding": "7.17.0"
          },
          {
            "criteria": "cpe:2.3:a:atlassian:confluence_server:7.18.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0AC5E81B-DA4B-45E7-9584-4B576E49FD8B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Known exploits

Weaknesses

Social media

Configurations

References