Uploaded image for project: 'Confluence Server'
  1. Confluence Server
  2. CONFSERVER-53435

Is Confluence vulnerable to Apache Struts 2 Remote Code Execution (CVE-2017-5638) ?

    XMLWordPrintable

    Details

    • Type: Suggestion
    • Status: Resolved
    • Resolution: Answered
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None
    • Feedback Policy:
      We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see An updated workflow for server feature suggestions.

      Description

      Referencing:

      - Apache Struts 2 Remote Code Execution (CVE-2017-5638)

      - BAM-18242

      Does this vulnerability apply to confluence 5.10.8 or 6.3 or 6.4?

      Thank you!

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              samjones samjones6
              Participants:
              Last Touched By:
              Owen Sanico
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Last commented:
                1 year, 14 weeks, 2 days ago