[Canvas] CANVAS 7.35

Miguel Turner miguel.turner at appgate.com
Thu Aug 11 19:16:33 UTC 2022

*Date*: 11 August 2022

*Version*: 7.35

*Download URL*: https://canvas.immunityinc.com/getcanvas

*Release Notes*:

In this CANVAS release we are bringing you 4 new modules and bugfixes.

Our new modules include three remote code execution exploits targeting
Confluence, and Zabbix, and one client side module targeting Microsoft


o f5_bigip_auth_bypass_rce - improved fingerprinting

o wso2_file_upload_rce - improved fingerprinting

==New Modules==

o couchdb_default_cookie (CVE-2022-24706)

o confluence_ognl_injection (CVE-2022-26134)

o office_follina_msdt_exec (CVE-2022-30190)

o zabbix_saml_bypass_rce (CVE-2022-23131)
The information contained in this electronic mail is confidential information intended only for the use of the individual(s) or entity(s) named. If the reader of the message is not the addressee (or authorized to receive for the addressee), you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please immediately notify the sender by reply e-mail and/or by telephone and destroy the original message.

More information about the Canvas mailing list