COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2023-22518

CVE-2023-22518

Severity
critical · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2023-11-07
Reference
https://nvd.nist.gov/vuln/detail/CVE-2023-22518
⌖ exploited in the wild shame 80/100 ransomwareexploited-in-wild

Atlassian Confluence Data Center and Server contain an improper authorization vulnerability that can result in significant data loss when exploited by an unauthenticated attacker. There is no impact on confidentiality since the attacker cannot exfiltrate any data.

Players implicated

Atlassian · vendorConfluence Data Center and Server · product

Description

Atlassian Confluence Data Center and Server contain an improper authorization vulnerability that can result in significant data loss when exploited by an unauthenticated attacker. There is no impact on confidentiality since the attacker cannot exfiltrate any data.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.