Critical Zero-Day Bug in Atlassian Confluence Under Active Exploit

digital abstract of a globe overlaid on a data board

The Final Phase of Digital Transformation Focuses on Data The Final Phase of Digital Transformation Focuses on Data

byNetwork Computing

Apr 26, 2024

1 Min Read

hiker climbing to top of a mountain

A New Era for CISOs: Navigating Regulations and Unprecedented Threats A New Era for CISOs: Navigating Regulations and Unprecedented Threats

byDeneen DeFiore, Jason Lee

Apr 25, 2024

5 Min Read

Resilience

Recent in Resilience

FBI Director Christopher Wray testifies during a Senate Intelligence Committee Hearing on worldwide threats on Capitol Hill in Washington, DC

Cyber Resilience

The Continuing Vulnerability of US Critical Infrastructure The Continuing Vulnerability of US Critical Infrastructure

byCarrie Pallardy

Apr 25, 2024

6 Min Read

Special Cybersecurity Forces Soldier Arrests and Handcuffs Highly Dangerous Hacker. Hideout is Dark and Full of Computer Equipment.

Cyber Resilience

To Catch a Cybercriminal -- and the Fallout That Follows To Catch a Cybercriminal -- and the Fallout That Follows

byCarrie Pallardy

Apr 25, 2024

13 Min Read

ML & AI

Recent in ML & AI

Revolutionizing Healthcare: The Impact of AI in Personalized Medicine and Beyond Revolutionizing Healthcare: The Impact of AI in Personalized Medicine and Beyond

Healthcare

Machine Learning & AI

byFPT Expert

Apr 29, 2024

5 Min Read

OpenAI logo depicted on sign

Machine Learning & AI

OpenAI Enterprise API Expands Offerings, Eyes Growth and Safety OpenAI Enterprise API Expands Offerings, Eyes Growth and Safety

byShane Snider

Apr 26, 2024

6 Min Read

Data

Recent in Data

digital abstract of a globe overlaid on a data board

The Final Phase of Digital Transformation Focuses on Data The Final Phase of Digital Transformation Focuses on Data

byNetwork Computing

Apr 26, 2024

1 Min Read

Businesswoman standing in data center.

GPUs Force CIOs to Rethink the Datacenter GPUs Force CIOs to Rethink the Datacenter

bySamuel Greengard

Apr 23, 2024

6 Min Read

Sustainability

Recent in Sustainability

Sophia Mendelsohn, chief sustainability officer with SAP.

Sustainability

SAP’s Sophia Mendelsohn on Using AI to Scale Sustainability SAP’s Sophia Mendelsohn on Using AI to Scale Sustainability

byJoao-Pierre S. Ruth

Apr 9, 2024

5 Min Read

Robot hand with green plug, plug socket

Sustainability

Confronting the AI Energy Drain Confronting the AI Energy Drain

byRichard Pallardy

Apr 1, 2024

14 Min Read

Infrastructure

Recent in Infrastructure

Businesswoman standing in data center.

GPUs Force CIOs to Rethink the Datacenter GPUs Force CIOs to Rethink the Datacenter

bySamuel Greengard

Apr 23, 2024

6 Min Read

Homepage of Broadcom website on the display of PC

Cloud Group Pans Broadcom’s Effort to Placate EU Regulators Cloud Group Pans Broadcom’s Effort to Placate EU Regulators

byShane Snider

Apr 22, 2024

2 Min Read

Software

Recent in Software

Manager is checking off four workers in a virtual planning matrix to select them for a work team.

Why Your Enterprise Should Create an Internal Talent Marketplace Why Your Enterprise Should Create an Internal Talent Marketplace

byJohn Edwards

Apr 24, 2024

5 Min Read

Young concentrated computer developer writing new code

Software & Services

How Developers of All Skill Levels Can Best Leverage AI How Developers of All Skill Levels Can Best Leverage AI

byPeter McKee

Apr 24, 2024

7 Min Read

Newsletters
Reports/Research
Online Events
Live Events
Podcasts

White Papers
Advertise With Us
About Us
IT Sectors

InformationWeek Resource Library

Cyber Resilience
Cybersecurity
Incident Response

Critical Zero-Day Bug in Atlassian Confluence Under Active Exploit

Patch now: The Atlassian security vulnerability appears to be a remotely exploitable privilege-escalation bug that cyberattackers could use to crack collaboration environments wide open.

Dark Reading, Staff & Contributors

October 6, 2023

1 Min Read

Andre Boukreev via Shutterstock

A critical privilege-escalation vulnerability in Atlassian Confluence Server and Confluence Data Center has been disclosed, with evidence of exploitation in the wild as a zero-day bug.

The flaw (CVE-2023-22515) affects on-premises instances of the platforms, in versions 8.0.0 and after.

"Atlassian has been made aware of an issue reported by a handful of customers where external attackers may have exploited a previously unknown vulnerability in publicly accessible Confluence Data Center and Server instances to create unauthorized Confluence administrator accounts and access Confluence instances," according to Atlassian's advisory on CVE-2023-22515, released late on Oct. 4.

Read the Full Article on Dark Reading

About the Author(s)

Dark Reading

Staff & Contributors

Dark Reading: Connecting The Information Security Community

Long one of the most widely-read cybersecurity news sites on the Web, Dark Reading is also the most trusted online community for security professionals. Our community members include thought-leading security researchers, CISOs, and technology specialists, along with thousands of other security professionals.

See more from Dark Reading

Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.

SIGN-UP

Editor's Choice

NHL's Calgary Flames at New Jersey Devils on February 8, 2024 in Newark, NJ

NHL, Presidio, and a Transformation Power Move with Hybrid Cloud NHL, Presidio, and a Transformation Power Move with Hybrid Cloud

byJoao-Pierre S. Ruth

Apr 5, 2024

6 Min Read

Online Privacy Security Threat Abstract Background Art

Cyber Resilience

Cyber Risks When Job Hunters Become the Hunted Cyber Risks When Job Hunters Become the Hunted

byCarrie Pallardy

Apr 9, 2024

9 Min Read

Business innovative solution and creative concept as a paper boat tied to a light bulb