Web Analytics
Select Page

DevOps Security Alerts

About ReleaseTEAM: DevOps Experts

Atlassian Confluence Server & Data Center Security Advisory

Severity 1 – Critical

Confluence Server Webwork OGNL injection – CVE-2021-26084

Issue Summary An OGNL injection vulnerability exists that would allow an authenticated user, and in some instances unauthenticated user, to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are before version 6.13.23, from version 6.14.0 before 7.4.11, from version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.
Affected versions:
  • version < 6.13.23
  • 6.14.0 ≤ version < 7.4.11
  • 7.5.0 ≤ version < 7.11.5
  • 7.12.0 ≤ version < 7.12.5
Fixed versions:
  • 6.13.23
  • 7.4.11
  • 7.11.6
  • 7.12.5
  • 7.13.0
These versions can be downloaded from the Confluence Server & Data Center Download Archives
More info can be found Here

Contact us on (866) 887-0489 or info@releaseteam.com today to speak to an expert about your next DevOps project.

Let's Talk DevOps!

Call: (866)-887-0489
Email: info@releaseteam.com

Veteran-Owned Business Badge

Corporate HQ

1499 W. 120th Avenue
Suite 110
Westminster, CO 80234
720-887-0489

Massachusetts

1257 Worcester Rd.
Suite 108
Framingham, MA 01701
866-887-0489

Canada

PMB# 604
1-110 Cumberland St.
Toronto, ON M5R 3V5
866-887-0489