Atlassian News Articles
Recent news articles refferecing the vendors vulnerabilities.
Cyber PressCVE-2025-22167Critical Jira Vulnerability Enables Arbitrary File Modification via JVM Access
The vulnerability, tracked as CVE-2025-22167, carries a high severity rating with a CVSS score of 8.7 and presents a significant risk
wiz.ioCVE-2025-22157CVE-2025-22157 Impact, Exploitability, and Mitigation Steps | Wiz
Understand the critical aspects of CVE-2025-22157 with a detailed vulnerability assessment, exploitation potential, affected technologies, and remediation guidance.
CVE-2025-22157
This High severity PrivEsc (Privilege Escalation) vulnerability was introduced in versions: 9.12.0, 10.3.0, 10.4.0, and 10.5.0 of Jira Core Data Center and Server 5.12.0, 10.3.0, 10.4.0, and 10.5.0 of Jira Service Management Data Center and Server This PrivEsc (Privilege Escalation) vulnerability, w...
TheCyberThroneCVE-2023-22522Atlassian fixes critical RCE vulnerabilities in its products
Atlassian has fixed four critical vulnerabilities in its software that could result in remote code execution. The first vulnerability is CVE-2022-1471 with a CVSS score 9.8, is a Deserialization vulnerability in the SnakeYAML library that can lead to remote code execution in multiple products The se...
The Hacker NewsCVE-2023-22527Atlassian Confluence Vulnerability Exploited in Crypto Mining Campaigns
Atlassian Confluence vulnerability CVE-2023-22527 actively exploited for cryptocurrency mining. Urgent patching recommended to prevent attacks.
Silent Intrusions: Godzilla Fileless Backdoors Targeting Atlassian Confluence
Malware Trend Micro discovered that old Atlassian Confluence versions that were affected by CVE-2023-22527 are being exploited using a new in-memory fileless...
Attackers Exploit Critical Atlassian Confluence Flaw for Cryptojacking
Novel attack vectors leverage the CVE-2023-22527 RCE flaw discovered in January, which is still under active attack, to turn targeted cloud environments into cryptomining networks.
SpiceworksCVE-2024-21687Atlassian Fixes Server and Data Center Flaws - Spiceworks
Atlassian has released security updates to patch critical vulnerabilities in its server and data center products. Find out more.
SpiceworksCVE-2024-21683Atlassian Confluence Flaw Enables Remote Code Execution - Spiceworks
Explore the details of a critical vulnerability in Atlassian Confluence that enables remote code execution. Learn how users can protect their systems with prompt updates.
eSecurity PlanetCVE-2024-21683Vulnerability Recap 6/10/24: RCE Attacks in Major Platforms
Explore recent RCE attacks and other vulnerabilities on major platforms. Stay updated on the latest fixes.
Week in review: Atlassian Confluence RCE PoC, new Kali Linux, Patch Tuesday forecast - Help Net Security
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: High-risk Atlassian Confluence RCE fixed, PoC available
Details of Atlassian Confluence RCE Vulnerability Disclosed
SonicWall has shared technical details on a recently addressed high-severity remote code execution flaw in Confluence.
Atlassian Confluence High-Severity Bug Allows Code Execution
Because of the role the Confluence Server plays in managing documentation and knowledge data bases, the researchers recommend users upgrade to patch CVE-2024-21683 as soon as possible.
Help Net SecurityCVE-2024-21683High-risk Atlassian Confluence RCE fixed, PoC available (CVE-2024-21683) - Help Net Security
PoC and technical details for a high-severity RCE flaw (CVE-2024-21683) in Atlassian Confluence Server and Data Center are public.
В популярной платформе Confluence нашли ещё одну критическую уязвимость. Она позволяет угнать сервер без аутентификации
Продукт Atlassian Confluence, BIZone WAF защищает от уязвимости CVE-2024-21683, В популярной платформе Confluence нашли ещё одну критическую уязвимость Она позволяет угнать сервер без аутентификации, 2023 Опасная уязвимости в Confluence эксплуатируется вымогателями ФСТЭК рекомендует защищаться, Че...
Vulnerable Atlassian Confluence instances exceed 200K
More than 200,000 Atlassian Confluence Data Center and Confluence Server instances could be compromised in intrusions targeting the high-severity remote code execution vulnerability, tracked as CVE-2024-21683, reports Cybernews.
GBHackers on SecurityCVE-2024-21683Critical Flaw In Confluence Server Let Attackers Execute Arbitrary Code
The widely used team workspace corporate wiki Confluence has been discovered with a critical Remote code execution vulnerability
Atlassian Confluence Linux instances targeted with Cerber ransomware
Attackers exploited a critical vulnerability to create a new administrator account.
Security AffairsCVE-2023-22518Linux variant of Cerber ransomware targets Atlassian servers
Threat actors are exploiting the CVE-2023-22518 flaw in Atlassian servers to deploy a Linux variant of Cerber (aka C3RB3R) ransomware.
Blog | NSFOCUS
Read the NSFOCUS blog to learn about the latest news, events and more.