CVE-2024-21676

Name of the Vulnerable Software and Affected Versions Confluence Data Center versions 7.3.0 through 8.5.7

Description The issue exists due to the failure to neutralize special elements used in operating system commands. Exploitation of this issue may allow a remote attacker to impact the confidentiality, integrity, and availability of protected information by modifying system calls.

Recommendations For Confluence Data Center versions 7.3.0 through 8.5.7, upgrade to a release greater than or equal to 8.5.8. As a temporary workaround, consider restricting system call modifications until a patch is available.