In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are before version 6.13.23, from version 6.14.0 before 7.4.11, from version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: atlassian

Published: 2021-08-30T06:30:14.248600Z

Updated: 2024-09-17T02:41:26.218Z

Reserved: 2021-01-25T00:00:00

Link: CVE-2021-26084

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-08-30T07:15:06.587

Modified: 2024-11-21T05:55:50.450

Link: CVE-2021-26084

cve-icon Redhat

No data.