all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Atlassian Confluence Hit by Newly Actively Exploited Zero-Day – Patch Now

Add to bookmarks
Oct. 5, 2023, 3:28 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Atlassian has released fixes to contain an actively exploited critical zero-day flaw impacting publicly accessible Confluence Data Center and Server instances.
The vulnerability, tracked as CVE-2023-22515, is remotely exploitable and allows external attackers to create unauthorized Confluence administrator accounts and access Confluence servers.
It does not impact Confluence versions prior to

access accounts actively exploited atlassian atlassian confluence attackers center confluence confluence data center critical cve cve-2023-22515 data data center exploited external fixes flaw impact patch server servers vulnerability zero-day zero-day flaw

Visit resource

More from thehackernews.com / The Hacker News

Critical GitHub Enterprise Server Flaw Allows Authentication Bypass 3 hours ago | thehackernews.com
access address attacker authentication +23
Malware Delivery via Cloud Services Exploits Unicode Trick to Deceive Users 5 hours ago | thehackernews.com
attack campaign cloud cloud services +26
SolarMarker Malware Evolves to Resist Takedown Attempts with Multi-Tiered Infrastructure 7 hours ago | thehackernews.com
clusters enforcement findings future +15
Five Core Tenets Of Highly Effective DevSecOps Practices 8 hours ago | thehackernews.com
applications attacks building challenges +21
Researchers Uncover Flaws in Python Package for AI Models and PDF.js Used by Firefox 9 hours ago | thehackernews.com
ai models arbitrary code arbitrary code execution checkmarx +32
Streamlining IT Security Compliance Using the Wazuh FIM Capability 9 hours ago | thehackernews.com
audit businesses compliance computer +20
Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses 11 hours ago | thehackernews.com
ai-powered app ask controls +14
NextGen Healthcare Mirth Connect Under Attack - CISA Issues Urgent Warning 13 hours ago | thehackernews.com
agency attack case catalog +35
"Linguistic Lumberjack" Vulnerability Discovered in Popular Logging Utility Fluent Bit 13 hours ago | thehackernews.com
called code code execution critical +25

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Incident Response Lead(IR)

@ Blue Yonder | Hyderabad
View on infosec-jobs.com

Comcast Cybersecurity: Privacy Operations Executive Director

@ Comcast | PA - Philadelphia, 1701 John F Kennedy Blvd
View on infosec-jobs.com