On June 2, 2022, Atlassian, developer of tools such as Jira and Trello, published a security advisory for the vulnerability CVE-2022-26134. This is a critical unauthenticated remote code execution vulnerability in Confluence Server and Data Center. The vulnerability is rated as critical and can be easily exploited.
Which versions are affected?
All versions of Confluence Server and Data Center prior to the fixed versions listed below are affected by this vulnerability.
Atlassian recommends upgrading to the latest long-term support version. For a detailed description of the latest version, please view the Confluence Server and Data Center release notes.
The following versions contain the patch for the vulnerability:
You can download the latest version from the Download Center.
After announcement of the new vulnerability, our go.lywand.com platform was updated.
The vulnerability can be identified in the course of lywand's security audits.
In this article, we look back on the past year and have summarised the most important things for you: newly developed features, updates on our partner network and technical insights into the security audit platform. Finally, you will find a summary of our management and an outlook for 2024.
Our security audit platform is now available to IT service providers in Austria, South Tyrol and the Eastern European region via our new distribution partner Nestec. You can find all information about the new distribution partnership in our press release.