all InfoSec news
Metasploit Weekly Wrap-Up
Rapid7 Blog blog.rapid7.com
That Privilege Escalation Escalated Quickly
This release features a module leveraging CVE-2023-22515, a vulnerability in Atlassian’s on-premises Confluence Server first listed as a privilege escalation, but quickly recategorized as a “broken access control” with a CVSS score of 10. The exploit itself is very simple and easy to use
access access control atlassian broken access control confluence confluence server control cve cve-2023-22515 cvss easy escalation exploit features metasploit metasploit weekly wrapup privilege privilege escalation quickly release score server simple vulnerability weekly wrap-up