Atlassian has released a security advisory revealing a new Atlassian Confluence zero-day vulnerability tracked as CVE-2022-26134 to install web shells.
The vulnerability is a remote code execution tracked in both Confluence Server and Data Center.
Atlassian has patched the vulnerability, which affected all supported versions of Confluence Server and Data Center. The patched versions are:
- 7.4.17
- 7.13.7
- 7.14.3
- 7.15.2
- 7.16.4
- 7.17.4
- 7.18.1
As Confluence Servers are the target of attackers exploiting the vulnerability, Atlassian recommends installing these versions to protect your instances against attacks. Devices should be updated immediately or taken offline.
At DEMICON, our clients are our highest priority. We make sure to support you through any possible issues or inconveniences. If you need assistance with your Confluence Server or Data Center, don't hesitate to contact us.
DEMICON : Sep 16, 2021 2:44:08 PM
Atlassian is increasing the prices of multiple cloud products, the new prices will be implemented after October 12, 2021. Even though a price change...
DEMICON : Sep 8, 2021 3:57:24 PM
Atlassian urges its customers to immediately update their Confluence on-premise, Data Center and Server products due to a vulnerability. The...
DEMICON : Jun 30, 2021 11:38:12 AM
Earlier this year, Atlassian announced the highly anticipated news that data residency would be included in its Standard and Premium cloud plans with...
DEMICON