Atlassian Patches RCE Flaw that Affected Multiple Products

Atlassian has been discovered with four new vulnerabilities associated with Remote Code Execution in multiple products.
The CVEs for these vulnerabilities have been assigned as CVE-2023-22522, CVE-2023-22523, CVE-2023-22524, and CVE-2022-1471.
Atlassian has patched these vulnerabilities and has released security advisories for users to patch them accordingly.
This template injection vulnerability allows an authenticated threat actor with uncertain access to inject malicious input into a Confluence page and execute remote code on affected instances.
Atlassian has given the severity of this vulnerability a 9.0.
This vulnerability exists between the Assets Discovery application and the Assets Discovery agent, allowing a threat actor to perform privileged remote code execution on the machines with vulnerable installations.
The severity of this vulnerability has been given a 9.8 rating by Atlassian.
A threat actor can exploit this vulnerability by using the WebSockets and bypassing Atlassian Companion's blocklist and MacOS Gatekeeper to perform remote code execution on affected machines.
Atlassian has given the severity of this vulnerability as 9.6.
This vulnerability exists in the SnakeYAML library for Java on Multiple Atlassian Data Centers and Server Products, which were vulnerable to deserialization flaws that could result in remote code execution if exploited.
The severity of this vulnerability has been given as 9.8.
For fixed versions of these products, referring to Atlassian's security advisory pages is recommended.
Users of these products are advised to upgrade to the latest versions of these products to prevent these vulnerabilities from getting exploited.

This Cyber News was published on gbhackers.com. Publication date: Thu, 07 Dec 2023 15:13:05 +0000

Cyber News related to Atlassian Patches RCE Flaw that Affected Multiple Products

Atlassian warns of 4 new critical vulnerabilities affecting Jira, Confluence, Bitbucket - Atlassian Jira, Confluence, Bitbucket and macOS Companion app users are warned to update their software immediately due to four critical vulnerabilities allowing for remote code execution. Atlassian, an Australian software company, has more than ...
6 months ago Packetstormsecurity.com

Atlassian warns of exploit for Confluence data wiping bug, get patching - Atlassian warned admins that a public exploit is now available for a critical Confluence security flaw that can be used in data destruction attacks targeting Internet-exposed and unpatched instances. Tracked as CVE-2023-22518, this is an improper ...
7 months ago Bleepingcomputer.com

Atlassian warns of critical RCE flaw in older Confluence versions - Atlassian Confluence Data Center and Confluence Server are vulnerable to a critical remote code execution vulnerability that impacts versions released before December 5, 2023, including out-of-support releases. The flaw is tracked as CVE-2023-22527, ...
5 months ago Bleepingcomputer.com

Critical Atlassian Confluence bug exploited in Cerber ransomware attacks - Attackers are exploiting a recently patched and critical severity Atlassian Confluence authentication bypass flaw to encrypt victims' files using Cerber ransomware. Described by Atlassian as an improper authorization vulnerability and tracked as ...
7 months ago Bleepingcomputer.com

Atlassian patches critical RCE flaws across multiple products - Atlassian has published security advisories for four critical remote code execution vulnerabilities impacting Confluence, Jira, and Bitbucket servers, along with a companion app for macOS. All security issues addressed received a critical-severity ...
7 months ago Bleepingcomputer.com

Atlassian Patches Critical Remote Code Execution Vulnerabilities - Business software maker Atlassian this week announced updates that address critical-severity remote code execution vulnerabilities in Confluence and other products. Atlassian, which rates the vulnerability with a CVSS score of 9.0, notes that an ...
7 months ago Securityweek.com

Atlassian Patches RCE Flaw that Affected Multiple Products - Atlassian has been discovered with four new vulnerabilities associated with Remote Code Execution in multiple products. The CVEs for these vulnerabilities have been assigned as CVE-2023-22522, CVE-2023-22523, CVE-2023-22524, and CVE-2022-1471. ...
7 months ago Gbhackers.com

Atlassian Confluence Server RCE attacks underway The Register - More than 600 IP addresses are launching thousands of exploit attempts against CVE-2023-22527 - a critical bug in out-of-date versions of Atlassian Confluence Data Center and Server - according to non-profit security org Shadowserver. Atlassian ...
5 months ago Go.theregister.com

Patch Now: Critical Atlassian Bugs Endanger Enterprise Apps - It's time to patch again: Four critical security vulnerabilities in Atlassian software open the door to remote code execution and subsequent lateral movement within enterprise environments. They are just the latest bugs to surface of late in the ...
7 months ago Darkreading.com

CVE-2022-26136 - A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to bypass Servlet Filters used by first and third party apps. The impact depends on which filters are used by each app, and how the filters are used. This ...
1 year ago

CVE-2022-26137 - A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to cause additional Servlet Filters to be invoked when the application processes requests or responses. Atlassian has confirmed and fixed the only known security ...
1 year ago

Apache OFBiz RCE flaw exploited to find vulnerable Confluence servers - A critical Apache OFBiz pre-authentication remote code execution vulnerability is being actively exploited using public proof of concept exploits. Apache OFBiz is an open-source enterprise resource planning system many businesses use for e-commerce ...
6 months ago Bleepingcomputer.com

Atlassian Warns of Critical RCE Vulnerability in Outdated Confluence Instances - Enterprise software maker Atlassian on Tuesday warned of a critical vulnerability in out-of-date Confluence Data Center and Server versions that could be exploited for remote code execution, without authentication. The issue, tracked as ...
5 months ago Securityweek.com

Critical unauthenticated RCE flaw in OpenSSH server - MUST READ. Critical unauthenticated remote code execution flaw in OpenSSH server. Expert released PoC exploit code for Veeam Backup Enterprise Manager flaw CVE-2024-29849. CISA adds Oracle WebLogic Server flaw to its Known Exploited Vulnerabilities ...
6 days ago Securityaffairs.com

Attacks begin on critical Atlassian Confluence vulnerability - Multiple cybersecurity organizations have observed exploitation attempts against a critical Atlassian Confluence vulnerability that was disclosed and patched last week. In a security advisory published on Jan. 16, Atlassian detailed a remote code ...
5 months ago Techtarget.com

Alert: 'Effluence' Backdoor Persists Despite Patching Atlassian Confluence Servers - Cybersecurity researchers have discovered a stealthy backdoor named Effluence that's deployed following the successful exploitation of a recently disclosed security flaw in Atlassian Confluence Data Center and Server. "The malware acts as a ...
7 months ago Thehackernews.com

VMware fixes critical code execution flaw in vCenter Server - VMware issued security updates to fix a critical vCenter Server vulnerability that can be exploited to gain remote code execution attacks on vulnerable servers. vCenter Server is the central management hub for VMware's vSphere suite, and it helps ...
7 months ago Bleepingcomputer.com

New ISC Security Patches Released for 2021: What You Need to Know - The Internet Systems Consortium (ISC), the largest provider of open-source Internet infrastructure software, has released new security patches designed to mitigate data breaches and other cyber threats. These new security patches, released in January ...
1 year ago Thehackernews.com

10 of the biggest zero-day attacks of 2023 - Here are 10 of the biggest zero-day attacks of 2023 in chronological order. Zero-day attacks started strong in 2023 with CVE-2023-0669, a pre-authentication command injection vulnerability in Fortra's GoAnywhere managed file transfer product. ...
6 months ago Techtarget.com

Cisco Routers Exposed to Remote Code Execution (RCE) Attacks: How to Protect Your Network - Protecting networks from remote code execution (RCE) attacks is now more important than ever, as thousands of end-of-life Cisco routers are exposed to these vulnerabilities. On June 10, 2020 research revealed that over 19,000 Cisco devices were still ...
1 year ago Bleepingcomputer.com

Hackers are exploiting critical Apache Struts flaw using public PoC - Hackers are attempting to leverage a recently fixed critical vulnerability in Apache Struts that leads to remote code execution, in attacks that rely on publicly available proof-of-concept exploit code. It appears that threat actors have just ...
6 months ago Bleepingcomputer.com

Critical Apache Log4j2 flaw still threatens global finance - Critical Apache Log4j2 flaw still threatens global finance. CISA adds Apache Flink flaw to its Known Exploited Vulnerabilities catalog. CISA adds GitLab flaw to its Known Exploited Vulnerabilities catalog. Russia-linked APT28 used post-compromise ...
1 month ago Securityaffairs.com

December Android updates fix critical zero-click RCE flaw - Google announced today that the December 2023 Android security updates tackle 85 vulnerabilities, including a critical severity zero-click remote code execution bug. Tracked as CVE-2023-40088, the zero-click RCE bug was found in Android's System ...
7 months ago Bleepingcomputer.com

Juniper Networks fixed a critical authentication bypass flaw in some of its routers - MUST READ. Threat actors actively exploit D-Link DIR-859 router flaw CVE-2024-0769. CISA adds Oracle WebLogic Server flaw to its Known Exploited Vulnerabilities catalog. Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 ...
6 days ago Securityaffairs.com

Juniper warns of critical RCE bug in its firewalls and switches - Juniper Networks has released security updates to fix a critical pre-auth remote code execution vulnerability in its SRX Series firewalls and EX Series switches. Found in the devices' J-Web configuration interfaces and tracked as CVE-2024-21591, this ...
5 months ago Bleepingcomputer.com

Latest Cyber News

CVE-2024-37528 - 3 hours ago
CVE-2024-31897 - 3 hours ago
CVE-2024-38330 - 4 hours ago
CVE-2024-39723 - 5 hours ago
CVE-2024-5711 - 6 hours ago
CVE-2024-6539 - 7 hours ago
CVE-2024-6229 - 14 hours ago
CVE-2024-40614 - 15 hours ago
CVE-2024-40605 - 1 day ago
CVE-2024-40604 - 1 day ago
CVE-2024-40603 - 1 day ago
CVE-2024-40602 - 1 day ago
CVE-2024-40601 - 1 day ago
CVE-2024-40600 - 1 day ago
CVE-2024-40599 - 1 day ago
CVE-2024-40598 - 1 day ago
CVE-2024-40596 - 1 day ago
CVE-2024-40597 - 1 day ago
CVE-2024-6095 - 1 day ago
CVE-2024-37554 - 1 day ago

Cyber Trends (last 7 days)

Okta - 7 months ago
23andMe - 7 months ago
Kimsuky - 7 months ago
LogoFAIL - 7 months ago
Gh0st rat - 7 months ago

Trending Cyber News (last 7 days)

CVE-2024-5711 - 6 hours ago
CVE-2024-39723 - 5 hours ago
CVE-2024-38330 - 4 hours ago
CVE-2024-37528 - 3 hours ago
CVE-2024-31897 - 3 hours ago
CVE-2024-6539 - 7 hours ago
CVE-2024-6229 - 14 hours ago
CVE-2024-40614 - 15 hours ago
CVE-2024-40605 - 1 day ago
CVE-2024-40604 - 1 day ago
CVE-2024-40603 - 1 day ago
CVE-2024-40602 - 1 day ago
CVE-2024-40601 - 1 day ago
CVE-2024-40600 - 1 day ago
CVE-2024-40599 - 1 day ago
CVE-2024-40598 - 1 day ago
CVE-2024-40596 - 1 day ago
CVE-2024-40597 - 1 day ago
CVE-2024-6095 - 1 day ago
CVE-2024-37553 - 1 day ago