CVE-2022-26134 — Atlassian Confluence Server/Data Center

known ransomware use

Atlassian Confluence Server and Data Center Remote Code Execution Vulnerability

Added to KEV

2022-06-02

Federal due date

2022-06-06

Vendor

Atlassian

Product

Confluence Server/Data Center

EPSS

100.0th percentile (score 0.944, as of 2026-06-08)

NVD CVSS v3.1

—

Ransomware use

Known

Upstream

https://nvd.nist.gov/vuln/detail/CVE-2022-26134

CISA short description

Atlassian Confluence Server and Data Center contain a remote code execution vulnerability that allows for an unauthenticated attacker to perform remote code execution.

Required action

Immediately block all internet traffic to and from affected products AND apply the update per vendor instructions [https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html] OR remove the affected products by the due date on the right. Note: Once the update is successfully deployed, agencies can reassess the internet blocking rules.

EPSS percentile is the FIRST.org exploit-probability ranking as of the date noted above; it moves daily. CVSS reflects NVD's analysis at time of publication.