Lucene search

[email protected]CONFSERVER-79480

HistoryJul 07, 2022 - 7:05 p.m.

Confluence Apache Tomcat CVE-2022-34305

2022-07-0719:05:27

[email protected]

jira.atlassian.com

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

43.3%

JSON

his is reproducible on Data Center: yes

The current version of Tomcat 9.0.63 is bundled with Confluence 7.18.2 and Confluence 7.13.8 are vulnerable to CVE-2022-34305 [https://vulners.com/cve/CVE-2022-34305]

h3. Steps to Reproduce

-

h3. Expected Results

h3. Actual Results

h3. Workaround

Manually updating Tomcat would be a valid workaround, however, checking the Tomcat download link we can see that the latest available version is

For Tomcat 9, 9.0.64 [http://archive.apache.org/dist/tomcat/tomcat-9/]
So, not even Tomcat has released a version that has the fix for this CVE, looks like this vulnerability is currently undergoing analysis.

Opening a ticket to keep track of it on our side.

[Update from Jul 21, 2022]
Tomcat released the 9.0.65 version which contains the fix for this vulnerability (CVE-2022-34305):

[Tomcat 9 - changelog|https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#:~:text=Examples. Fix-,CVE-2022-34305,-%2C a low severity]

CPENameOperatorVersion
confluence data centerle7.13.8
confluence data centerle7.18.2
confluence data centerlt7.13.11
confluence data centerlt7.19.2
confluence data centerlt7.20.0

Name	Operator	Version
confluence data center	le	7.13.8
confluence data center	le	7.18.2
confluence data center	lt	7.13.11
confluence data center	lt	7.19.2
confluence data center	lt	7.20.0