Latest Critical Atlassian Confluence Vulnerability Under Active Exploitation

29 July 2022

A week after Atlassian rolled out patches to contain a critical flaw in its Questions For Confluence app for Confluence Server and Confluence Data Center, the shortcoming has now come under active exploitation in the wild. The bug in question is CVE-2022-26138, which concerns the use of a hard-coded password in the app that could be exploited by a remote, unauthenticated attacker to gain unrestricted access to all pages in Confluence.

Read full article on The Hacker News

Date:

29 July 2022

Categorie(s):

NEWS

Tag(s):

Active, Atlassian, Confluence, Security Pro, Vulnerability

Integrated Residential Security Solutions to Employ in 202426 April 2024
Five ways security leaders can demonstrate the business value of cybersecurity26 April 2024
UK’s Investigatory Powers Bill to become law despite tech world opposition26 April 2024
Dropbox adds end-to-end encryption for team folders26 April 2024
New ‘Brokewell’ Android Malware Spread Through Fake Browser Updates26 April 2024