The Art of Defense

[ SB 21.15 ] Multiple Confluence Vulns allow RCE (CVE-2021-26085)

Atlassion released multiple Advisories and CVEs with critical vulns, allowing arbitrary fileread and RCE

  • Confluence Server and Data Center Webwork OGNL injection - CVE-2021-26084
    -> Public POCS see below
  • Pre-Authorization Limited Arbitrary File Read in Confluence Server CVE-2020-29448
    -> POC
  • Pre-Authorization Arbitrary File Read in /s/ endpoint - CVE-2021-26085
    -> POC

POCs are available


References & POCS

  • writeup: CVE-2021-26084 Remote Code Execution on Confluence Servers
  • CVE-2021-26084 - Confluence Server Webwork OGNL injection(Unauthenticated)
  • additional routes affected
  • CVE-2021-26084 (PoC) | Confluence Server Webwork OGNL injection wit additional routes




Fragen? Kontakt: info@zero.bs
Filed: Thu 26 August 2021 | Security Bulletin | Tags: confluence poc exploit rce



Main-Links

  • zeroBS Home
  • Imprint / Contact
  • AGB
  • PGP-Keys
  • Report a Bug
  • zeroBS @ Twitter
  • zeroBS @ XING

Blog

  • Blog-Index
  • Security Bulletins
  • zeroBS-News
  • DDoS-Blogs
  • Security-Blogs
  • Botnet-Blogs

OSS & Projects

  • Botnetz-Monitoring und Tracking
  • DDoS Resiliency Score
  • Spike, Naxsi Rules Builder



(c) copyright 2017-2023 zeroBS GmbH, all rights reserved
info@zero.bs