The Confluence RCE vulnerability (CVE-2022-26134): Overview, detection, and remediation | Datadog Security Labs
Tags
attack-pattern: Data Confluence - T1213.001 Domains - T1583.001 Domains - T1584.001 Exploits - T1587.004 Exploits - T1588.005 Server - T1583.004 Server - T1584.004 Social Media - T1593.001
Show in Graph
Common Information
Type Value
UUID aa875b09-4e47-4d94-a69b-dbcccb6be8c3
Fingerprint 1d0da8c4c3576f93
Analysis status DONE
Considered CTI value 0
Text language
Published June 7, 2022, midnight
Added to db Aug. 13, 2023, 9:49 a.m.
Last updated Nov. 17, 2024, 5:55 p.m.
Headline The Confluence RCE vulnerability (CVE-2022-26134): Overview, detection, and remediation
Title The Confluence RCE vulnerability (CVE-2022-26134): Overview, detection, and remediation | Datadog Security Labs
Detected Hints/Tags/Attributes 30/1/8
Source URLs
Redirection Url
Details Source https://securitylabs.datadoghq.com/articles/confluence-rce-vulnerability-overview-and-remediation/
URL Provider
Details Provider Source level domain
Details datadoghq.com securitylabs.datadoghq.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 230 Datadog Security Labs https://securitylabs.datadoghq.com/rss/feed.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 122 
cve-2022-26134
Details Domain 1 
actionchainresult.java
Details Domain 16 
tcp.ngrok.io
Details Domain 30 
ngrok.io
Details Email 2 
8090/${@java.lang.runtime
Details File 2 
3-atlassian-10.jar
Details File 1 
actionchainresult.java
Details Url 2 
http://localhost:8090/${@java.lang.runtime@getruntime().exec