BigFix Inventory SignaturesBigFix Inventory Signatures

Confluence Server and Data Center affected by CVE-2022-26134, 7.0.0 - 7.14.2
Log In or Register to download the signature, and more.


Description

Signature verifies if exists at least one of vulnerable jar files: xwork-1.0.3.6.jar or webwork-2.1.5-atlassian-3.jar

Property Details

PublisherAtlassian Inc.
Product NameConfluence Server and Data Center affected by CVE-2022-26134
Software Release7.0.0 - 7.14.2
KeywordsConfluence Server and Data Center CVE-2022-26134
Software UniqueId2e1bd1a0-e714-11ec-876c-025041000001
Uploaded by on 6/8/2022 4:19:59 AM
Last modified by on 6/8/2022 4:19:59 AM
Counters 2 Downloads
User Rating 1 star 2 star 3 star 4 star 5 star * Average over 0 ratings. ** Log In or Register to add your rating.

Signature Content

<?xml version="1.0" encoding="utf-8"?>
<SoftwareIdentityCatalog exportTimeStamp="2022-06-08T10:24:52Z">
  <Software name="Confluence Server and Data Center affected by CVE-2022-26134" vendor="Atlassian Inc." uniqueId="2e1bd1a0-e714-11ec-876c-025041000001" version="7.0.0 - 7.14.2">
    <Signature uniqueId="2dde7a80-e714-11ec-876c-025041000001" modified="2022-06-08T10:17:19Z" created="2022-06-08T10:17:19Z">
      <ExtendedSignature><![CDATA[<MultipleInstance><Iterator export="true" name="INSTALL_PATH"><Vector filter="*confluence?WEB-INF?lib?"><FindFilePathEx name="*work-*.jar"/></Vector></Iterator><Instance><Variable export="false" name="affected_files_exist"><Or><FileExists absolutePath="$(INSTALL_PATH)xwork-1.0.3.6.jar"/><FileExists absolutePath="$(INSTALL_PATH)webwork-2.1.5-atlassian-3.jar"/></Or></Variable><Condition withVariable="affected_files_exist"><Action do="SKIP" onValue="false"/></Condition><Variable export="true" name="IS_INSTALLED"><ValueOf value="true"/></Variable></Instance></MultipleInstance>]]></ExtendedSignature>
    </Signature>
  </Software>
</SoftwareIdentityCatalog>

Sharing

Social Media:
Share this page on Yammer

Comments

Log In or Register to leave comments!