all InfoSec news
Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks
Malware Analysis, News and Indicators - Latest topics malware.news
SUMMARY
The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) are releasing this joint Cybersecurity Advisory (CSA) in response to the active exploitation of CVE-2023-22515. This recently disclosed vulnerability affects certain versions of Atlassian Confluence Data Center and Server, enabling malicious cyber threat actors to obtain initial access to Confluence instances by creating unauthorized Confluence administrator accounts. Threat actors exploited CVE-2023-22515 as a zero-day to obtain access to victim …
access advisory agency analysis atlassian atlassian confluence bureau center cisa confluence confluence data center csa cve cve-2023-22515 cybersecurity cybersecurity advisory data data center exploit exploitation fbi federal federal bureau of investigation information information sharing infrastructure infrastructure security initial access investigation isac ms-isac networks response security sharing state threat threat actors vulnerability