Threat Advisories

Atlassian’s Latest Critical Confluence Flaw Poses Risk of Data Loss

November 1, 2023

Threat Level

Vulnerability Report

For a detailed threat advisory, download the pdf file here

Summary

A critical vulnerability identified in Atlassian as CVE-2023-22518 which pertains to be an improper authorization issue in Confluence Data Center and Server. If successfully exploited by an unauthenticated attacker, it could potentially lead to significant data loss.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

Hackers Utilize MSIX App Packages to Disseminate GHOSTPULSE Malware

CISA Known Exploited Vulnerability Catalog October 2023