Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-26084

In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are before version 6.13.23, from version 6.14.0 before 7.4.11, from version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.

Published

2021-08-30T07:15:06.587

Last Modified

2025-02-10T18:02:37.233

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Primary
CWE-917
Type: Secondary
CWE-917

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	atlassian	confluence_data_center	< 6.13.23	Yes
Application	atlassian	confluence_data_center	< 7.4.11	Yes
Application	atlassian	confluence_data_center	< 7.11.6	Yes
Application	atlassian	confluence_data_center	< 7.12.5	Yes
Application	atlassian	confluence_server	< 6.13.23	Yes
Application	atlassian	confluence_server	< 7.4.11	Yes
Application	atlassian	confluence_server	< 7.11.6	Yes
Application	atlassian	confluence_server	< 7.12.5	Yes

References

http://packetstormsecurity.com/files/167449/Atlassian-Confluence-Namespace-OGNL-Injection.html Exploit, Third Party Advisory, VDB Entry ([email protected])
https://jira.atlassian.com/browse/CONFSERVER-67940 Issue Tracking, Patch, Vendor Advisory ([email protected])
http://packetstormsecurity.com/files/167449/Atlassian-Confluence-Namespace-OGNL-Injection.html Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://jira.atlassian.com/browse/CONFSERVER-67940 Issue Tracking, Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)