cyber Vulnerability

Atlassian

Jul 3, 2022 1 min read
Atlassian

Atlassian warned its customers that multiple threat groups are exploiting a Confluence Server zero-day vulnerability in its servers.

Any unauthenticated attackers can target its Confluence Server and Data Center by a critical vulnerability that can be exploited for remote code execution.

The company advised its users have been advised to prevent access to their Confluence servers from the internet, or simply disable these instances, as all supported versions of Confluence Server and Data Center are affected.

However, Atlassian expects fixes to become available soon.

Source: https://www.securityweek.com/atlassian-confluence-servers-hacked-zero-day-vulnerability

TPRM report: https://scoringcyber.rankiteo.com/company/atlassian

"id": "atl23554622",
"linkid": "atlassian",
"type": "Vulnerability",
"date": "06/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'industry': 'Software',
                        'name': 'Atlassian',
                        'type': 'Company'}],
 'attack_vector': 'Remote Code Execution',
 'description': 'Atlassian warned its customers that multiple threat groups '
                'are exploiting a Confluence Server zero-day vulnerability in '
                'its servers. Any unauthenticated attackers can target its '
                'Confluence Server and Data Center by a critical vulnerability '
                'that can be exploited for remote code execution. The company '
                'advised its users to prevent access to their Confluence '
                'servers from the internet, or simply disable these instances, '
                'as all supported versions of Confluence Server and Data '
                'Center are affected. However, Atlassian expects fixes to '
                'become available soon.',
 'impact': {'systems_affected': ['Confluence Server', 'Data Center']},
 'recommendations': ['Prevent access to Confluence servers from the internet',
                     'Disable Confluence instances'],
 'response': {'communication_strategy': ['Advised users to take preventive '
                                         'actions'],
              'containment_measures': ['Prevent access to Confluence servers '
                                       'from the internet',
                                       'Disable Confluence instances']},
 'threat_actor': ['Multiple threat groups'],
 'title': 'Atlassian Confluence Server Zero-Day Vulnerability',
 'type': 'Zero-Day Exploit',
 'vulnerability_exploited': 'Confluence Server Zero-Day Vulnerability'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.