"US Gov Expects Widespread Exploitation of Atlassian Confluence Vulnerability"

US cybersecurity agency CISA, the FBI, and the Multi-State Information Sharing and Analysis Center (MS-ISAC) have warned organizations of potential widespread exploitation of a recent zero-day vulnerability in the Atlassian Confluence Data Center and Server.  Tracked as CVE-2023-22515 (CVSS score of 9.8), the bug has been exploited by a nation-state threat actor since September 14, roughly two weeks before Atlassian released patches for it.  The agencies noted that the flaw is remotely exploitable without authentication and is described as a broken access control issue leading to privilege escalation.  The issue impacts on-premises Confluence instances only.  The vulnerability impacts Confluence Data Center and Server versions 8.0.0 to 8.5.1 and has been addressed with the release of versions 8.3.3, 8.4.3, and 8.5.2 of the product.  Organizations with internet-accessible Confluence Data Center and Server instances are advised to update to a patched release as soon as possible.  They should also consider restricting network access until the updates are applied.

 

SecurityWeek reports: "US Gov Expects Widespread Exploitation of Atlassian Confluence Vulnerability"

Submitted by Adam Ekwall on