Atlassian Confluence

Confluence Remote Code Execution Vulnerability (CVE-2023-22527) Alert

janeiro 17, 2024

Overview On January 16, NSFOCUS CERT detected that Atlassian officially released a security announcement fixing the remote code execution vulnerability (CVE-2023-22522) in Confluence Data Center and Confluence Server. This vulnerability is caused by template injection. Unauthenticated attackers can inject malicious requests into Confluence pages to implement remote code execution on affected targets. The CVSS score […]

Search

Inscreva-se no Blog da NSFOCUS