Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
attackerkbAttackerKBAKB:812ED357-C31F-4733-AFDA-96FACDD8A486
HistoryJul 13, 2022 - 12:00 a.m.

CVE-2022-26134

2022-07-1300:00:00
attackerkb.com
235

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.975 High

EPSS

Percentile

100.0%

JSON

In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are from 1.3.0 before 7.4.17, from 7.13.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and from 7.18.0 before 7.18.1.

Recent assessments:

noraj at April 15, 2023 7:34pm UTC reported:

It’s easy to weaponize, even manually but there are dozens of exploits available. There is a TryHackMe room about CVE-2022-26134 to practice in a lab environment.

jbaines-r7 at June 03, 2022 7:21pm UTC reported:

It’s easy to weaponize, even manually but there are dozens of exploits available. There is a TryHackMe room about CVE-2022-26134 to practice in a lab environment.

Assessed Attacker Value: 4
Assessed Attacker Value: 4Assessed Attacker Value: 5

Related

rapid7blog 3
githubexploit 75
thn 6
zdt 7
packetstorm 7
prion 4
cvelist 3
nvd 3
cnvd 1
cve 2
impervablog 3
github 2
myhack58 1
checkpoint_advisories 3
threatpost 17
ibm 8
osv 2
ubuntucve 2
f5 1
openvas 2
nessus 10
veracode 1
akamaiblog 5
cisco 1
nuclei 3
qualysblog 1
kitploit 1
talosblog 1
metasploit 3
dsquare 1
exploitpack 1
redhatcve 1
krebs 1
trendmicroblog 2
cisa_kev 2
attackerkb 2
cisa 4
atlassian 3
hackerone 1
malwarebytes 1
hivepro 1
wallarmlab 1
rapid7blog
rapid7blog
Active Exploitation of Confluence CVE-2022-26134
2022-06-02 23:27:15
Metasploit Wrap-Up
2021-10-22 14:25:55
Active Exploitation of Confluence Server & Confluence Data Center: CVE-2021-26084
2021-09-02 15:44:36
githubexploit
githubexploit
Exploit for Injection in Atlassian Confluence
2021-10-06 23:24:24
Exploit for Injection in Atlassian Confluence
2021-10-06 23:24:24
Exploit for Injection in Atlassian Confluence
2021-10-06 23:24:24
thn
thn
Atlassian Confluence Flaw Being Used to Deploy Ransomware and Crypto Miners
2022-06-18 04:11:00
Atlassian Releases Patch for Confluence Zero-Day Flaw Exploited in the Wild
2022-06-04 08:57:00
Hackers Exploiting Unpatched Critical Atlassian Confluence Zero-Day Vulnerability
2022-06-03 03:43:00
zdt
zdt
Atlassian Confluence Namespace OGNL Injection Exploit
2022-06-09 00:00:00
Apache Struts 2.x Remote Code Execution Vulnerability
2018-08-24 00:00:00
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (2) Exploit
2018-08-28 00:00:00
packetstorm
packetstorm
Atlassian Confluence Namespace OGNL Injection
2022-06-08 00:00:00
Apache Struts 2.3 / 2.5 Remote Code Execution
2018-08-25 00:00:00
Apache Struts 2.3 / 2.5 Remote Code Execution
2018-08-26 00:00:00
prion
prion
Design/Logic Flaw
2022-03-08 12:15:00
Remote code execution
2018-08-22 13:29:00
Code injection
2021-08-30 07:15:00
cvelist
cvelist
CVE-2022-26314
2022-03-08 11:31:36
CVE-2018-11776
2018-08-22 00:00:00
CVE-2021-26084
2021-08-10 00:00:00
nvd
nvd
CVE-2022-26314
2022-03-08 12:15:11
CVE-2018-11776
2018-08-22 13:29:00
CVE-2022-26134
2022-06-03 22:15:07
cnvd
cnvd
Siemens Mendix Forgot Password Appstore module存在未明漏洞
2022-03-09 00:00:00
cve
cve
CVE-2022-26314
2022-03-08 12:15:11
CVE-2018-11776
2018-08-22 13:29:00
impervablog
impervablog
Attackers Quick to Weaponize CVE-2023-22527 for Malware Delivery
2024-02-21 09:28:01
Read: Apache Struts Patches ‘Critical Vulnerability’ CVE-2018-11776
2018-08-23 14:25:36
Imperva Earns Three Cyber Defense Global InfoSec Awards for 2022
2022-07-26 13:16:19
github
github
Bypassing OGNL sandboxes for fun and charities
2023-01-27 16:00:49
Apache Struts vulnerable to remote command execution (RCE) due to improper input validation
2018-10-18 19:24:38
myhack58
myhack58
Apache Struts2 S2-057 vulnerability analysis and early warning-vulnerability warning-the black bar safety net
2018-08-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache Struts Remote Code Execution (CVE-2018-11776)
2018-08-23 00:00:00
Atlassian Confluence Remote Code Execution (CVE-2021-26084)
2021-09-05 00:00:00
Atlassian Confluence Remote Code Execution (CVE-2022-26134)
2022-06-06 00:00:00
threatpost
threatpost
Five OAuth Bugs Lead to Github Hack
2014-02-11 10:53:58
Breached Credentials Used to Access Github Repositories
2016-06-17 11:01:55
PoC Code Surfaces to Exploit Apache Struts 2 Vulnerability
2018-08-24 22:07:17
ibm
ibm
Security Bulletin: A vulnerability in Apache Struts affects the IBM FlashSystem 840 and 900
2023-02-18 01:45:50
Security Bulletin: IBM Security Guardium is affected by a Publicly disclosed Apache Struts vulnerability
2018-09-28 04:30:01
Security Bulletin: Public disclosed vulnerability from Apache Struts affects IBM Platform Application Center
2018-09-25 13:15:02
osv
osv
CVE-2018-11776
2018-08-22 13:29:00
Apache Struts vulnerable to remote command execution (RCE) due to improper input validation
2018-10-18 19:24:38
ubuntucve
ubuntucve
CVE-2018-11776
2018-08-22 00:00:00
CVE-2022-26134
2022-06-03 00:00:00
f5
f5
K60499474 : Apache Struts vulnerability CVE-2018-11776
2018-08-24 00:00:00
openvas
openvas
Apache Struts Security Update (S2-057) - Version Check
2018-08-23 00:00:00
Huawei Data Communication: Apache Struts2 S2-057 Remote Code Execution Vulnerability in Some Huawei Products (huawei-sa-20181121-01-struts2)
2020-06-05 00:00:00
nessus
nessus
Apache Struts CVE-2018-11776 Results With No Namespace Possible Remote Code Execution (S2-057)
2018-08-22 00:00:00
Cisco Unified Communication Manager Apache Struts RCE (CSCvm14042)
2018-09-05 00:00:00
Apache Struts CVE-2018-11776 Results With No Namespace Remote Code Execution (S2-057) (remote)
2018-08-23 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2018-08-22 17:36:38
akamaiblog
akamaiblog
Web Application and API Protection -- From SQL Injection to Magecart
2020-09-09 13:00:00
Akamai?s Observations of Confluence Zero Day (CVE-2022-26134)
2022-06-28 13:00:00
Confluence Server Webwork OGNL Injection (CVE-2021-26084): How Akamai Helps You Protect Against Zero-Day Attacks
2021-09-15 07:00:00
cisco
cisco
Apache Struts Remote Code Execution Vulnerability Affecting Cisco Products: August 2018
2018-08-23 20:00:00
nuclei
nuclei
Apache Struts2 S2-057 - Remote Code Execution
2021-02-24 04:29:30
Confluence Server - Remote Code Execution
2021-08-31 20:40:27
Confluence - Remote Code Execution
2022-06-03 20:11:56
qualysblog
qualysblog
Security News: Hackers Aim Ransomware at Big Cos., as Experts Call for Swift Patching of Struts Bug
2018-08-27 18:32:33
kitploit
kitploit
Mitaka - A Browser Extension For OSINT Search
2019-09-21 12:00:00
talosblog
talosblog
Connecting the dots between recently active cryptominers
2018-12-18 08:33:00
metasploit
metasploit
Apache Struts 2 Namespace Redirect OGNL Injection
2018-08-31 18:48:22
Atlassian Confluence WebWork OGNL Injection
2021-10-14 21:58:04
Atlassian Confluence Namespace OGNL Injection
2022-06-03 19:27:13
dsquare
dsquare
Apache Struts 2 Multiple Tags Result Namespace Handling RCE
2018-10-20 00:00:00
exploitpack
exploitpack
Apache Struts 2.3 2.3.34 2.5 2.5.16 - Remote Code Execution (1)
2018-08-26 00:00:00
redhatcve
redhatcve
CVE-2018-11776
2018-08-22 08:49:33
krebs
krebs
Experts Urge Rapid Patching of ‘Struts’ Bug
2018-08-23 20:22:35
trendmicroblog
trendmicroblog
Server Security for the Modern IT Ecosystem
2019-01-03 15:30:46
Atlassian Confluence Vulnerability CVE-2022-26134 Abused For Cryptocurrency Mining, Other Malware
2022-09-21 00:00:00
cisa_kev
cisa_kev
Apache Struts Remote Code Execution Vulnerability
2021-11-03 00:00:00
Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability
2021-11-03 00:00:00
attackerkb
attackerkb
CVE-2018-11776
2018-08-22 00:00:00
CVE-2021-26084 Confluence Server OGNL injection
2021-08-10 00:00:00
cisa
cisa
Atlassian Releases Security Updates for Confluence Server and Data Center
2021-09-03 00:00:00
Atlassian Releases New Versions of Confluence Server and Data Center to Address CVE-2022-26134
2022-06-03 00:00:00
Atlassian Releases Security Advisory for Confluence Server and Data Center, CVE-2022-26134
2022-06-02 00:00:00
atlassian
atlassian
Confluence Server Webwork OGNL injection - CVE-2021-26084
2021-07-27 05:13:48
Remote code execution via OGNL injection in Confluence Server & Data Center - CVE-2022-26134
2022-06-03 20:08:07
Unauthenticated remote code execution vulnerability via OGNL template injection - Duplicate
2022-06-02 03:36:35
hackerone
hackerone
U.S. Dept Of Defense: RCE in ███ [CVE-2021-26084]
2021-09-02 05:49:27
malwarebytes
malwarebytes
[updated]Unpatched Atlassian Confluence vulnerability is actively exploited
2022-06-03 14:41:58
hivepro
hivepro
Vulnerable Atlassian Confluence Servers utilized to drop Crypto Miners
2022-09-29 06:56:17
wallarmlab
wallarmlab
Update on the Confluence 0-day vulnerability (CVE-2022-26134)
2022-06-03 20:50:59

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.975 High

EPSS

Percentile

100.0%

JSON
Related for AKB:812ED357-C31F-4733-AFDA-96FACDD8A486
rapid7blog3githubexploit75thn6zdt7packetstorm7prion4cvelist3nvd3cnvd1cve2impervablog3github2myhack581checkpoint_advisories3threatpost17ibm8osv2ubuntucve2f51openvas2nessus10veracode1akamaiblog5cisco1nuclei3qualysblog1kitploit1talosblog1metasploit3dsquare1exploitpack1redhatcve1krebs1trendmicroblog2cisa_kev2attackerkb2cisa4atlassian3hackerone1malwarebytes1hivepro1wallarmlab1