all InfoSec news
Atlassian Confluence data-wiping vulnerability exploited
Help Net Security www.helpnetsecurity.com
Threat actors are trying to exploit CVE-2023-22518, a critical Atlassian Confluence flaw that allows unauthenticated attackers to reset vulnerable instances’ database, Greynoise is observing. The Shadowserver Foundation has also seen 30+ IP addresses testing for the flaw in internet-facing Confluence installations. From security updates to active exploitation Atlassian released security updates for CVE-2023-22518 on October 31 and urged customers to upgrade quickly, even though there was no indication that the vulnerability was being targeted. “Instances … More
The post …
addresses atlassian atlassian confluence attackers confluence critical cve cve-2023-22518 data database don't miss exploit exploitation exploited facing flaw foundation greynoise hot stuff internet ip addresses october poc reset security security updates shadowserver testing threat threat actors unauthenticated updates vulnerability vulnerability exploited vulnerable wiping