Confluence

Confluence Remote Code Execution Vulnerability (CVE-2024-21683) Notification

| | Blog, Confluence, CVE-2024-21683, Emergency Response, remote code execution vulnerability
Overview Recently, NSFOCUS CERT detected that Atlassian issued a security announcement and fixed the remote code execution vulnerability in Confluence Data Center and Server (CVE-2024-21683), with a CVSS score of 8.3. Authenticated ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
A number ‘10’ printed on a roughly rendered wall

Atlassian Bug now a Perfect 10: Riot of Ransomware Raids

| | atlassian, Atlassian Confluence, cerber, Confluence, CVE-2023-22518, CVSS10, Java, Ransomware, SB Blogwatch, vulnerability
Step #1: Get it off the Internet—Confluence Data Center and Server on-prem products perfectly pwned, so patch ...
Security Boulevard
Understanding the Recent Confluence Vulnerability (CVE-2023-22515) and Digging into Atlassian Bamboo

Understanding the Recent Confluence Vulnerability (CVE-2023-22515) and Digging into Atlassian Bamboo

| | Confluence, CVE, Labs, Vulnerability Research
Overview Recently, Rapid7 disclosed a vulnerability within Confluence that allowed a remote unauthenticated attacker to create a new administrative user account by bypassing the XWork SafeParameterFilter functionality. Our vulnerability research team decided ...
Blog - Praetorian