CVE-2023-22505

Summary

CVE-2023-22505 is a high severity Remote Code Execution (RCE) vulnerability affecting Confluence Data Center & Server versions 8.0.0 and above. With a CVSS score of 8, this issue allows authenticated attackers to execute arbitrary code, posing significant threats to confidentiality, integrity, and availability without user interaction. Atlassian advises users to upgrade to the latest version or to fixed versions 8.3.2 and 8.4.0. This vulnerability was discovered by a private user and reported through the Atlassian Bug Bounty program.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.