Atlassian Confluence data-wiping vulnerability exploited

Threat actors are trying to exploit CVE-2023-22518, a critical Atlassian Confluence flaw that allows unauthenticated attackers to reset vulnerable instances’ database, Greynoise is observing. The Shadowserver Foundation has also seen 30+ IP addresses testing for the flaw in internet-facing Confluence installations. From security updates to active exploitation Atlassian released security updates for CVE-2023-22518 on October 31 and urged customers to upgrade quickly, even though there was no indication that the vulnerability was being targeted. “Instances … More → The post Atlassian Confluence data-wiping vulnerability exploited appeared first on Help Net Security.
http://news.poseidon-us.com/SyRtmG

Atlassian Confluence data-wiping vulnerability exploited

Like this:

Related

More Posts

3 signs your team is suffering from bad service management

McAfee and Intel collaborate to combat deepfakes with Deepfake Detector

Telstra to push back 3G switch-off

Gov to set up identity credential misuse app

nslookup's Debug Options, (Sun, May 5th)

Week in review: PoCs allow persistence on Palo Alto firewalls, Okta credential stuffing attacks

New study reveals how teens thrive online: factors that shape digital success revealed

New computer algorithm supercharges climate models and could lead to better predictions of future climate change

Addressing and closing critical skills gaps in the federal workforce

Share this:

Like this:

Related

More Posts