CVE-2021-26084: Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability
Published: (December 22, 2025 at 01:38 PM EST)
1 min read
Source: Dev.to
Source: Dev.to
CVE ID
CVE-2021-26084
Vulnerability Name
Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability
Project & Product
- Project: Atlassian
- Product: Confluence Server and Data Center
Dates
- Date Added: 2021-11-03
- Due Date: 2021-11-17
Description
Atlassian Confluence Server and Data Center contain an Object-Graph Navigation Language (OGNL) injection vulnerability that may allow an unauthenticated attacker to execute code.
Known to Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
- NVD entry: