FortiClient Vulnerability

Atlassian Confluence CVE-2022-26138 Weak Authentication Vulnerability

Description

When the Questions for Confluence app is enabled on Confluence Server or Data Center, it creates a Confluence user account with the username disabledsystemuser. This account is intended to aid administrators that are migrating data from the app to Confluence Cloud. The disabledsystemuser account is created with a hardcoded password and is added to the confluence-users group, which allows viewing and editing all non-restricted pages within Confluence by default. A remote, unauthenticated attacker with knowledge of the hardcoded password could exploit this to log into Confluence.

Affected Applications

Confluence

CVE References

CVE-2022-26138

Other References

https://jira.atlassian.com/browse/CONFSERVER-79483

ID	4449
Created	Aug 03, 2022
Description Updated	Oct 16, 2023
Risk
Coverage	FortiClient
OS	Windows
Vendor	Atlassian
Patch	manual
Application	Confluence

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Atlassian Confluence CVE-2022-26138 Weak Authentication Vulnerability

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Atlassian Confluence CVE-2022-26138 Weak Authentication Vulnerability

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center