CISA Warns of Widespread Exploitation of Known Confluence Vulnerability
CISA, the FBI, and the Multi-State Information Sharing and Analysis Center (MS-ISAC) have issued a joint advisory warning organizations of “widespread, continued exploitation” of a known bug in the popular Atlassian Confluence software, reports Lindsey O’Donnell-Welch.
The bug (CVE-2023-22515) can allow “threat actors to obtain initial access to Confluence instances by creating unauthorized Confluence administrator accounts,” and network administrators are urged to patch the flaw immediately.
Read more at Decipher.
Related content
- CISA Issues Emergency Directive for Vulnerabilities Affecting Cisco Devices
- Redis Vulnerability Impacts Linux Servers
- Known Linux Kernel Bug Being Actively Exploited
-
Security and automation with SBOMs
Already mandatory in the United States and recently approved in Europe thanks to new legislation, a software bill of materials provides information about software components, enabling IT managers to respond better to attacks and vulnerabilities. -
Moving from Atlassian Confluence to BlueSpice
With Atlassian's announcement that they are moving to a cloud-only solution, many organizations will be looking for an alternative that lets them keep their collaboration data local. BlueSpice is a worthy open source alternative with easy-to-use migration tools.
Subscribe to our ADMIN Newsletters
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Most Popular
Focus On Self-Hosting
• Self-Hosted PaaS with Coolify
• Build and Host Docker Images
• Self-Hosted Pritunl VPN Server with MFA
• Self-Hosted Chat Servers
• Self-Hosted Remote Support with RustDesk
Support Our Work
ADMIN content is made possible with support from readers like you. Please consider contributing when you've found an article to be beneficial.
