Lucene search

K

RCE (Remote Code Execution) in Confluence Data Center and Server - CVE-2022-1471

🗓️ 11 Sep 2023 21:51:13Reported by 5de531f82e45Type 
atlassian
 atlassian
🔗 jira.atlassian.com👁 32 Views

RCE (Remote Code Execution) in Confluence Data Center and Server - CVE-2022-1471. SnakeYAML library deserialization flaw can lead to RCE (Remote Code Execution) in multiple Atlassian Data Center and Server Products. Atlassian Cloud sites not affected. Affected versions include 6.13.x to 8.3.0. Patch to fixed versions 7.19.17 (LTS), 8.4.5, 8.5.4 (LTS), 8.6.2 (Data Center Only), 8.7.1 (Data Center Only) or upgrade to 7.13.20, 7.19.10, or 8.3.1

Show more
Related
Detection
ReporterTitlePublishedViews
Family
Oracle linux
prometheus-jmx-exporter security update
15 Dec 202200:00
oraclelinux
F5 Networks
K000132638 : SnakeYAML vulnerability CVE-2022-1471
16 Feb 202300:00
f5
IBM Security Bulletins
Security Bulletin: IBM Db2 Web Query for i is vulnerable to arbitrary code execution due to SnakeYaml [CVE-2022-1471]
19 Jul 202320:29
ibm
IBM Security Bulletins
Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to SnakeYaml code execution (CVE-2022-1471)
15 Feb 202302:59
ibm
IBM Security Bulletins
Security Bulletin: A vulnerability has been identified in IBM Spectrum Scale GUI where remote authenticated attacker can execute an arbitrary code on the system (CVE-2022-1471)
5 Apr 202309:33
ibm
IBM Security Bulletins
Security Bulletin: IBM Match 360 is vulnerable to SnakeYaml's Constructor() class that not restrict types which can be instantiated during deserialization (CVE-2022-1471)
6 Jul 202301:42
ibm
IBM Security Bulletins
Security Bulletin: IBM Workload Scheduler potentially affected by a vulnerability in SnakeYaml (CVE-2022-1471)
13 Jun 202313:09
ibm
IBM Security Bulletins
Security Bulletin: Vulnerability in SnakeYaml affects watsonx.data
3 Sep 202420:44
ibm
IBM Security Bulletins
Security Bulletin: IBM i Modernization Engine for Lifecycle Integration is vulnerable to execution of arbitrary code on the system (CVE-2022-1471)
17 Jul 202314:27
ibm
IBM Security Bulletins
Security Bulletin: IBM Sterling Global High Availability Mailbox is affected by a SnakeYaml deserialization vulnerability (CVE-2022-1471)
19 Nov 202413:48
ibm
Rows per page
Vulners
Node
OROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROR

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo