Atlassian has a new critical CONFLUENCE vulnerability

Atlassian has a new critical CONFLUENCE vulnerability

 has warned of a severe security flaw in its Confluence Data Center and Server that could result in data loss if used by an attacker.

This is being tracked as CVE-2023-22518 and more information is available here.

The key message is action must be taken immediately to protect instances, as all versions of the software are affected.

In terms of a patch, released about five hours ago we have:

 Product Fixed Versions
Confluence Data Center and Server
  • 7.19.16 or later
  • 8.3.4 or later
  • 8.4.4 or later
  • 8.5.3 or later
  • 8.6.1 or later

 

If unable to patch, then back up your instance, remove your instance from the internet (or public access to it) and patch it when you can.

If you are concerned about supply chain risk, speak to the Talanos Sales Team.


Speak with an Expert


Talanos are a specialist provider of managed cybersecurity services. Our experienced team come highly rated on Gartner Peer Reviews.

Book a consultation with an expert to explore how we can help you address the threats that put your organisation at risk.