CVE-2022-26134 — Atlassian Confluence Server and Data Center Remote Code Execution Vulnerability
2022-06-02 • CISA Known Exploited Vulnerability
[event] Atlassian Confluence Server and Data Center contain a remote code execution vulnerability that allows for an unauthenticated attacker to perform remote code execution.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | Atlassian |
| Product | Confluence Server/Data Center |
| CWE | CWE-917 |
| CVE ID | CVE-2022-26134 |
| Date Added | 2022-06-02 |
| Due Date | 2022-06-06 |
| Ransomware Campaign | Known — this vulnerability has been leveraged in ransomware campaigns |
> MITIGATION
Immediately block all internet traffic to and from affected products AND apply the update per vendor instructions [https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html] OR remove the affected products by the due date on the right. Note: Once the update is successfully deployed, agencies can reassess the internet blocking rules.
Due Date: 2022-06-06