Atlassian has fixed a critical zero-day vulnerability (CVE-2023-22515) in Confluence Data Center and Server that is being exploited in the wild. “Atlassian has been made aware of an issue reported by a handful of customers where external attackers may have exploited a previously unknown vulnerability in publicly accessible Confluence Data Center and Server instances to create unauthorized Confluence administrator accounts and access Confluence instances,” the company said. About CVE-2023-22515 Atlassian describes CVE-2023-22515 as a critical … More
The post Critical Atlassian Confluence zero-day exploited by attackers (CVE-2023-22515) appeared first on Help Net Security.