all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Critical CVEs in Outdated Versions of Atlassian Confluence and VMware vCenter Server

Add to bookmarks
Jan. 19, 2024, 3:40 p.m. | Rapid7

Rapid7 Blog blog.rapid7.com

Rapid7 is highlighting two critical vulnerabilities in outdated versions of widely deployed software this week. Atlassian disclosed CVE-2023-22527, a template injection vulnerability in Confluence Server with a maxed-out CVSS score of 10, while VMware pushed a fresh update to its October 2023 vCenter Server advisory on CVE-2023-34048 to note that

advisory atlassian atlassian confluence confluence confluence server critical critical vulnerabilities cve cve-2023-34048 cves cvss cvss score emergent threat response injection october rapid7 score server software template template injection update vcenter vcenter server vmware vmware vcenter server vulnerabilities vulnerability vulnerability risk management week

Visit resource

More from blog.rapid7.com / Rapid7 Blog

New! Insight Agent Support for ARM-based Windows in InsightVM 1 day, 14 hours ago | blog.rapid7.com
agent arm assessment devices +8
Metasploit Weekly Wrap-Up 05/31/2024 1 day, 14 hours ago | blog.rapid7.com
cve cve-2024 directory directory traversal +15
CVE-2024-24919: Check Point Security Gateway Information Disclosure 2 days, 17 hours ago | blog.rapid7.com
access advisory check check point +22
Celebrating Excellence: Joanne Guarglia and Kelly Hiscoe Recognized as CRN's 2024 Women of the Channel 2 days, 19 hours ago | blog.rapid7.com
awards career development channel team +1
Metasploit Weekly Wrap-Up 05/23/2024 1 week, 2 days ago | blog.rapid7.com
access broadcast code code execution +16
The Take Command Summit: A Day of Resilience and Preparation 1 week, 2 days ago | blog.rapid7.com
books command cybersecurity discussions +15
CVE-2024-4978: Backdoored Justice AV Solutions Viewer Software Used in Apparent Supply Chain Attack 1 week, 2 days ago | blog.rapid7.com
action attack audio cve +17
Rapid7 Releases the 2024 Attack Intelligence Report 1 week, 4 days ago | blog.rapid7.com
and response attack attack surface command +20
Metasploit Wrap-Up 05/17/2024 2 weeks, 1 day ago | blog.rapid7.com
capabilities ldap metasploit metasploit weekly wrapup +2

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com