Rapid7 Observed Exploitation of Atlassian Confluence CVE-2023-22518 – Cyber Security Review>
Rapid 7 Blog –
Rapid7 Managed Detection and Response (MDR) has identified instances of Atlassian Confluence exploitation across multiple customer environments, including cases involving ransomware deployment.
The exploits primarily target two vulnerabilities: CVE-2023-22518, an improper authorization vulnerability, and CVE-2023-22515, a critical broken access control vulnerability.
Atlassian released an advisory for CVE-2023-22518 on October 31, 2023.
These observations indicate the active exploitation of Confluence vulnerabilities and highlight the need for immediate action to patch and secure affected systems.
For more detailed information, you can read the [Rapid7 blog post](https://www.rapid7.com/blog/post/2023/11/06/etr-rapid7-observed-exploitation-of-atlassian-confluence-cve-2023-22518/).
Link: https://www.rapid7.com/blog/post/2023/11/06/etr-rapid7-observed-exploitation-of-atlassian-confluence-cve-2023-22518/