[CONFSERVER-79017] RCE in Confluence DataCenter via HazelCast(Confluence) Port

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 7.4.17, 7.13.7, 7.14.3, 7.15.2, 7.16.4, 7.17.4, 7.18.1
Affects Version/s: 7.4.0, 7.13.0, 7.14.0, 7.15.0, 7.16.0, 7.17.0, 7.18.0
Component/s: None
Labels:

CVSS Score:
10
CVSS Severity:
Critical
CVE ID:
CVE-2016-10750

Summary
A remote attacker who can connect to the Hazelcast service, running on port 5801 (and potentially 5701), is able to execute arbitrary code on all the nodes in a Confluence Data Center through Java deserialization.

Vulnerability Details
Confluence Data Center uses the third-party software Hazelcast, which is vulnerable to Java deserialization attacks (CVE-2016-10750). Hazelcast provides functionality needed to run Confluence Data Center as a cluster. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted JoinRequest, resulting in arbitrary code execution.

The affected versions are from 1.3.0 before 7.4.17, from 7.13.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and from 7.18.0 before 7.18.1.

mentioned in: Multiple Products Security Advisory - Hazelcast Vulnerable To Remote Code Execution - CVE-2016-10750, CVE-2022-26133; Page Failed to load; Page Failed to load; Page Failed to load; Page Failed to load; Page Loading...; Page Loading...

(2 mentioned in)

Sunny Wu made changes - 02/Aug/2022 5:56 AM

Remote Link

Original: This issue links to "Page (Extranet)" [ 668220 ]

Sunny Wu made changes - 02/Aug/2022 1:22 AM

Remote Link

New: This issue links to "Page (Extranet)" [ 668220 ]

Armand Gino T. Agapito added a comment - 11/Jul/2022 12:04 AM

Is there any workaround for this without upgrading confluence?

Armand Gino T. Agapito added a comment - 11/Jul/2022 12:04 AM Is there any workaround for this without upgrading confluence?

Cathy S made changes - 05/Jul/2022 1:41 PM

Remote Link

New: This issue links to "Page (Confluence)" [ 659508 ]

Sunny Wu made changes - 05/Jul/2022 6:05 AM

Remote Link

New: This issue links to "Page (Extranet)" [ 659236 ]

Conor made changes - 23/Jun/2022 11:20 AM

Remote Link

New: This issue links to "Page (Confluence)" [ 656225 ]

Cathy S made changes - 15/Jun/2022 6:20 PM

Remote Link

New: This issue links to "Page (Confluence)" [ 653432 ]

Conor made changes - 13/Jun/2022 12:47 PM

Remote Link

New: This issue links to "Page (Confluence)" [ 652280 ]

Security Metrics Bot made changes - 12/Jun/2022 8:28 PM

CVE ID

New: CVE-2016-10750

Rachel Robins made changes - 06/Jun/2022 7:34 AM

Remote Link

Original: This issue links to "Page (Atlassian Documentation)" [ 649832 ]

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 06/Jun/2022 6:20 AM

Updated:: 02/Aug/2022 5:56 AM

Resolved:: 06/Jun/2022 6:40 AM

Confluence Data Center

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: Armand Gino T. Agapito added a comment - 11/Jul/2022 12:04 AM

Expand comment: Armand Gino T. Agapito added a comment - 11/Jul/2022 12:04 AM

People

Dates