all InfoSec news
Atlassian Confluence Unauthorized Admin Account (CVE-2023-22515)
Nov. 10, 2023, 6:23 p.m. |
FortiGuard Labs | FortiGuard Center - Threat Signal Report fortiguard.fortinet.com
The vulnerability attack is targeting an authentication bypass flaw in Atlassian Confluence Server and Confluence Data Center. The vulnerability is due to insufficient validation of user-supplied inputs. A successful exploitation may create an administrator account on the vulnerable server.
What is the Vendor Solution?
Atlassian released software updates to the affected products. For more information, click here.
What FortiGuard Coverage is available?
FortiGuard Labs has an IPS signature "Atlassian.Confluence.Unauthorized.Admin.Account.Creation" to detect and block any attack targeting …
account admin atlassian atlassian confluence atlassian confluence server attack authentication authentication bypass authentication bypass flaw bypass center confluence confluence data center confluence server cve cve-2023-22515 data data center exploitation flaw inputs may server software software updates solution targeting updates validation vendor vulnerability vulnerable what is
More from fortiguard.fortinet.com / FortiGuard Labs | FortiGuard Center - Threat Signal Report
GitLab Password Reset Vulnerability (CVE-2023-7028)
1 day, 18 hours ago |
fortiguard.fortinet.com
Ignite Realtime Openfire Path Traversal Vulnerability (CVE-2023-32315)
2 days, 17 hours ago |
fortiguard.fortinet.com
Jobs in InfoSec / Cybersecurity
Lead Security Specialist
@ Fujifilm | Holly Springs, NC, United States
Security Operations Centre Analyst
@ Deliveroo | Hyderabad, India (Main Office)
CISOC Analyst
@ KCB Group | Kenya
Lead Security Engineer – Red Team/Offensive Security
@ FICO | Work from Home, United States
Cloud Security SME
@ Maveris | Washington, District of Columbia, United States - Remote
SOC Analyst (m/w/d)
@ Bausparkasse Schwäbisch Hall | Schwäbisch Hall, DE