Security Advisory

Atlassian Family Security Update Advisory

  • May 24 2024

Overview

 

Atlassian has released an update to address a vulnerability in their products. Users of affected versions are advised to update to the latest version.

 

Affected Products

 

  • Confluence Data Center and Server versions: up to and including 8.9.0
  • Confluence Data Center and Server versions: 8.8.0 (inclusive) to 8.8.1 (inclusive)
  • Confluence Data Center and Server versions : 8.7.1 (inclusive) to 8.7.2 (inclusive)
  • Confluence Data Center and Server versions: 8.6.0 (inclusive) to 8.6.2 (inclusive)
  • Confluence Data Center and Server versions: 8.5.0 (inclusive) to 8.5.8 (LTS) (inclusive)
  • Confluence Data Center and Server versions: 8.4.0 (inclusive) to 8.4.5 (inclusive)
  • Confluence Data Center and Server versions: 8.3.0 (inclusive) to 8.3.4 (inclusive)
  • Confluence Data Center and Server versions: 8.2.0 (inclusive) to 8.2.3 (inclusive)
  • Confluence Data Center and Server versions: 8.1.0 (inclusive) to 8.1.4 (inclusive)
  • Confluence Data Center and Server versions: 8.0.0 (inclusive) to 8.0.4 (inclusive)
  • Confluence Data Center and Server versions: 7.20.0 (inclusive) to 7.20.3 (inclusive)
  • Confluence Data Center and Server versions: 7.19.0 (inclusive) to 7.19.21 (LTS) (inclusive)

 

Resolved Vulnerabilities

 

Remote code execution vulnerability in Confluence Data Center and Server (CVE-2024-21683) [1]

 

Vulnerability Patches

 

Vulnerability patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

  • Confluence Data Center version 8.9.1
  • Confluence Data Center and Server 8.5.9 (LTS) recommended version
  • Confluence Data Center and Server 7.19.22 (LTS) version

 

Referenced Sites

 

[1] Security Bulletin – March 19 2024

https://confluence.atlassian.com/security/security-bulletin-march-19-2024-1369444862.html

Tags:

Previous Post

Next Post