all InfoSec news
Critical CVEs in Outdated Versions of Atlassian Confluence and VMware vCenter Server
Rapid7 Blog blog.rapid7.com
Rapid7 is highlighting two critical vulnerabilities in outdated versions of widely deployed software this week. Atlassian disclosed CVE-2023-22527, a template injection vulnerability in Confluence Server with a maxed-out CVSS score of 10, while VMware pushed a fresh update to its October 2023 vCenter Server advisory on CVE-2023-34048 to note that
advisory atlassian atlassian confluence confluence confluence server critical critical vulnerabilities cve cve-2023-34048 cves cvss cvss score emergent threat response injection october rapid7 score server software template template injection update vcenter vcenter server vmware vmware vcenter server vulnerabilities vulnerability vulnerability risk management week