Suspicious Alert

Hi,

We had an email alert telling us about a Jira Confluence Server Vulnerability, and we needed to check in ASAP whether this is affecting us or not, and if we need to patch.

We are on Jira version 8.21.0, which the email alert says would be affected. If anyone could please assist us with how we should go about resolving or patching this, it would be appreciated. I've attached a screenshot of the alert message below, thank you!

atlassian vulnerability.png

2 answers

2 accepted

0 votes

Answer accepted

Hi @michael avanzato ,

CVE-2022-26134 is a real security alert. In order to fix it, my suggestion is to follow the Atlassian offcial article https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html

Hope this helps,

Fabio

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

0 votes

Answer accepted

Hi @michael avanzato ,

Welcome to Atlassian community.

Yes the email is suspicious. Below is the original advisory released by Atlassian. This is detected in Confluence and not in Jira.

Confluence-security-advisory

Have a good day!

Thanks,

Srinath T

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Forums

Product Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Suspicious Alert

2 answers

2 accepted

Suggest an answer

Was this helpful?

Thanks!

TAGS

Atlassian Community Events

Forums

Product Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Suspicious Alert

2 answers

2 accepted

Suggest an answer

Was this helpful?

Thanks!

TAGS

Atlassian Community Events

Welcome to the new Atlassian Community