all InfoSec news
The Confluence RCE vulnerability (CVE-2022-26134): Overview, detection, and remediation
Datadog Security Labs securitylabs.datadoghq.com
On May 31, 2022, a critical vulnerability in Atlassian Confluence Server and Confluence Data Center was disclosed by Volexity. While conducting an incident response investigation involving internet-facing servers with the Confluence server installed, Volexity determined that the servers were compromised and attackers were launching successful remote code execution (RCE) exploits. After replicating the attack, they notified Atlassian about the vulnerability and CVE-2022-26134 was assigned to track it.
Atlassian later released a security advisory to address this unauthenticated RCE vulnerability, …
confluence cve cve-2022-26134 detection rce remediation vulnerability