Hackers start exploiting critical Atlassian Confluence RCE flaw

2024-01-22 13:41

Security researchers are observing exploitation attempts for the CVE-2023-22527 remote code execution flaw vulnerability that affects outdated versions of Atlassian Confluence servers.

Atlassian disclosed the security issue last week and noted that it impacts only Confluence versions released before December 5, 2023, along with some out-of-support releases.

The flaw has a critical severity score and is described as a template injection weakness that allows unauthenticated remote attackers to execute code on vulnerable Confluence Data Center and Confluence Server endpoints, versions versions 8.0.x, 8.1.x, 8.2.x, 8.3.x, 8.4.x, and 8.5.0 through 8.5.3.

Atlassian warns of critical RCE flaw in older Confluence versions.

Apache OFBiz RCE flaw exploited to find vulnerable Confluence servers.

Hackers are exploiting critical Apache Struts flaw using public PoC. Sophos backports RCE fix after attacks on unsupported firewalls.

News URL

https://www.bleepingcomputer.com/news/security/hackers-start-exploiting-critical-atlassian-confluence-rce-flaw/

#atlassian #confluence #critical #hacker #RCE #CVE-2023-22527

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-16	CVE-2023-22527	Injection vulnerability in Atlassian Confluence Data Center and Confluence Server A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. network low complexity atlassian CWE-74 critical	9.8

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Atlassian		58	3	259	104	46	412

News URL

Related news

Related Vulnerability

Related vendor