Missed Team ’24? Catch up on announcements here.

×
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Is Confluence Server vulnerable to RCE in Spring Core? AKA Spring4Shell or SpringShell

SSP Admins
SSP Admins
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
March 30, 2022

Atlassian, is Confluence Server vulnerable?

https://www.cyberkendra.com/2022/03/springshell-rce-0-day-vulnerability.html

https://www.bleepingcomputer.com/news/security/new-spring-java-framework-zero-day-allows-remote-code-execution/

https://threatpost.com/critical-rce-bug-spring-log4shell/179173/

https://bugalert.org/content/notices/2022-03-30-spring.html

 

Answer
Watch
Like # people like this
695 views

2 answers

0 votes
Daniel Ebers
Daniel Ebers
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 18, 2022

Hi @SSP Admins

later the month there was a knowledge base entry made which talks about the vulnerability more in details - you could review it, in case the topic is still relevant to your team:

The corresponding bug on JAC was: https://jira.atlassian.com/browse/CONFSERVER-78586

Regards,
Daniel

Reply
0 votes
Srinatha T
Srinatha T
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
March 31, 2022

Hi @SSP Admins ,

Welcome to Atlassian community.

At this moment there is no update on this . You can bookmark the below URL where Atlassian keeps updating the vulnerablities and its impact info.

I hope above info helps. Have a good day!

Thanks,

Srinath T

Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events