all InfoSec news
CISA Pushes Organizations to Patch Known Confluence Bug
Malware Analysis, News and Indicators - Latest topics malware.news
U.S. government agencies are warning private sector and governmental organizations that they expect to see “widespread, continued exploitation” of a known bug in Atlassian Confluence and are urging network administrators to apply the patch for the flaw immediately.
The privilege escalation vulnerability (CVE-2023-22515) in on-premises instances of Confluence Server and Confluence Data Center first emerged earlier in October as a zero day, and Atlassian issued a security advisory on Oct. 4 that included fixed versions. A new advisory on Oct. …
administrators atlassian atlassian confluence bug cisa confluence confluence server cve cve-2023-22515 data escalation expect exploitation flaw government government agencies network network administrators organizations patch private private sector privilege privilege escalation sector server u.s. government vulnerability warning