Atlassian's Confluence software has been hit by a severe vulnerability, tracked as CVE-2023-22518, with a critical CVSS v3 rating of 9.1, later elevated to 10 due to active exploitation. The flaw is being actively exploited, with reports of ransomware deployment. Researchers also found a persistent backdoor called Effluence in compromised Confluence servers, allowing attackers continued access even after patches.
Alert: 'Effluence' Backdoor Persists Despite Patching Atlassian Confluence Servers: https://t.co/8Z8iDpgDxO by The Hacker News #infosec #cybersecurity #technology #news
š Researchers found a persistent backdoor called Effluence in compromised Atlassian Confluence servers. This allows attackers to access resources and data, even after patches. Learn more: https://t.co/JH1z2gc4H0 #cybersecurity #hacking
Initially given a critical CVSS v3 rating of 9.1, a vulnerability in @Atlassian Confluence tracked as CVE-2023-22518 was elevated to 10 after reports of active exploitation. #cybersecurity #infosec #ITsecurity https://t.co/hl6MQE7pD1
A #vulnerability discovered in Atlassian's #Confluence Data and Server is facing widespread #exploitation, including #ransomware deployment. https://t.co/BNU1G7uETU
Patch now: unauthenticated attackers target severe Atlassian Confluence vulnerability https://t.co/PcaLTTe8mo
Initially given a critical CVSS v3 rating of 9.1, a vulnerability in @Atlassian Confluence tracked as CVE-2023-22518 was elevated to 10 after reports of active exploitation. #cybersecurity #infosec #ITsecurity https://t.co/hl6MQE7pD1
Atlassian raises the severity rating of a vulnerability in its Confluence Data Center and Server to maximum, and confirms the flaw is being actively exploited (@connorlbjones / The Register) https://t.co/zgNcL88OJG š« Subscribe: https://t.co/OyWeKSQRTe https://t.co/g0qKAbVzLs
Atlassian cranks up the threat meter to max for Confluence authorization flaw https://t.co/oiQcbkYkVv