Safeguard
Tag

confluence

Safeguard articles tagged "confluence" — guides, analysis, and best practices for software supply chain and application security.

6 articles

Vulnerability Analysis

Confluence Broken Access Control Zero-Day (CVE-2023-22515) Explained

CVE-2023-22515 let unauthenticated attackers create rogue administrator accounts on Confluence Data Center and Server. Here's the broken-access-control flaw and how to fix it.

Jul 7, 20265 min read
Vulnerability Analysis

Confluence OGNL Injection (CVE-2022-26134) Explained

CVE-2022-26134 is a CVSS 9.8 unauthenticated OGNL injection in Atlassian Confluence, exploited as a zero-day before the patch. Here is how the flaw works and which versions fixed it.

Jul 5, 20266 min read
Vulnerability Analysis

Confluence CVE-2021-26084 Explained: The Webwork OGNL Injection RCE

CVE-2021-26084 is an unauthenticated OGNL injection in Confluence Server and Data Center that allows remote code execution, rated CVSS 9.8. Here is the timeline, root cause, detection, and patched versions.

Jul 5, 20265 min read
Incident Analysis

Confluence Zero-Day Lessons: What CVE-2023-22515 Showed About SaaS-Adjacent On-Prem Risk

The Confluence broken access control zero-day from October 2023 hit thousands of self-hosted instances. A 2026 look at the exploit, the response, and the durable lessons.

Mar 5, 20265 min read
Vulnerability Analysis

Atlassian Questions for Confluence CVE-2022-26138: A Hardcoded Password That Gave Away the Keys

CVE-2022-26138 exposed a hardcoded password in the Questions for Confluence app, granting unauthenticated access to Confluence data. A preventable disaster.

Jul 20, 20226 min read
Vulnerability Analysis

Confluence Zero-Day (CVE-2022-26134): Atlassian's OGNL Injection Crisis

An unauthenticated RCE zero-day in Confluence Server was being actively exploited before Atlassian even knew about it. The vulnerability affected virtually every on-premise Confluence installation.

Jun 3, 20225 min read
confluence — Safeguard Blog