Cybersecurity Alerts

← Back to Cybersecurity Alerts

CVE-2023-22527

Atlassian | Confluence Data Center and ServerAdded 2024-01-24Remediation Deadline 2024-02-14Active Ransomware Campaign

Atlassian Confluence Data Center and Server Template Injection Vulnerability

Atlassian Confluence Data Center and Server contain an unauthenticated OGNL template injection vulnerability that can lead to remote code execution.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.