Overview
- Description
- A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supported versions of Confluence Data Center and Server are not affected by this vulnerability as it was ultimately mitigated during regular version updates. However, Atlassian recommends that customers take care to install the latest version to protect their instances from non-critical vulnerabilities outlined in Atlassian’s January Security Bulletin.
- Source
- security@atlassian.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 3.0
- Type
- Secondary
- Base score
- 10
- Impact score
- 6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
Known exploits
Data from CISA
- Vulnerability name
- Atlassian Confluence Data Center and Server Template Injection Vulnerability
- Exploit added on
- Jan 24, 2024
- Exploit action due
- Feb 14, 2024
- Required action
- Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Social media
- Hype score
- Not currently trending
Trend Micro Search: Attacker Abuses Victim Resources to Reap Rewards from Titan Network: In this blog entry, we discuss how an attacker took advantage of the Atlassian Confluence vulnerability CVE-2023-22527 to connect servers to the Titan… https://t.co/qKQAcsSYcW Check it out!
@jrimer2008
30 Oct 2024
48 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Atlassian Confluence Vulnerability CVE-2023-22527 Exploited for Cryptomining https://t.co/48aGRRfmwg
@Dinosn
30 Oct 2024
5919 Impressions
35 Retweets
85 Likes
27 Bookmarks
3 Replies
1 Quote
Atlassian Confluence Vulnerability CVE-2023-22527 Exploited for Cryptomining Learn about the disclosed #Atlassian #Confluence vulnerability and how attackers exploit it to hijack victim resources and conduct cryptomining activity on compromised systems https://t.co/MglnLAPxlr
@the_yellow_fall
30 Oct 2024
59 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:atlassian:confluence_data_center:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "98686E6C-5D52-4EDB-A580-CE01009BADBA",
"versionEndExcluding": "8.5.4",
"versionStartIncluding": "8.0.0"
},
{
"criteria": "cpe:2.3:a:atlassian:confluence_data_center:8.7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FED19C83-6D8B-45B1-AAC3-F4C6B12C0E4D"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:atlassian:confluence_server:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "82C2F4B6-A251-4D8B-8624-99079E50E331",
"versionEndExcluding": "8.5.4",
"versionStartIncluding": "8.0.0"
}
],
"operator": "OR"
}
]
}
]