Wiz discovered AWS CodeBuild misconfiguration enabling unauthorized privileged builds, dubbed “CodeBreach.” Flaw risked exposing GitHub tokens…
Continue ReadingTag: vulnerability
Atlassian’s Confluence Data Center and Server Affected by Critical RCE Vulnerability, CVE-2023-22527: Patch Now
[Update] August 29, 2024: “Cryptojacking via CVE-2023-22527” [Update] January 25, 2024: “CVE-2023-22527 Has Been Listed in…
Continue Reading
CVE-2023-22515: The Confluence Data Center and Server Vulnerability
[Update] November 13, 2023: New ‘Effluence’ Backdoor Targets Confluence Data Center and Server Upon Exploiting CVE-2023-22515…
Continue Reading
Atlassian CISO Announced: Improper Authorization Vulnerability Detected on Confluence Data Center and Server (CVE-2023-22518)
[Update] April 18, 2023: “Cerber Ransomware Exploits CVE-2023-22518 in Confluence Servers, Deploys Linux Variant” [Update] November…
Continue Reading
Chinese gov’t hackers exploiting new Atlassian vulnerability, Microsoft says
Hackers linked to the Chinese government are exploiting a recently-discovered vulnerability affecting an Atlassian product, according…
Continue Reading