CVE-2023-22515

CVE

Critical KEVConfirmedExploit available

Atlassian has been made aware of an issue reported by a handful of customers where external attackers may have exploited a previously unkno…

CVSS

9.8

Critical

EPSS

0.94

p99

Published

2023-01-01

Updated

2023-10-05

Description

Atlassian has been made aware of an issue reported by a handful of customers where external attackers may have exploited a previously unknown vulnerability in publicly accessible Confluence Data Center and Server instances to create unauthorized Confluence administrator accounts and access Confluence instances. Atlassian Cloud sites are not affected by this vulnerability. If your Confluence site is accessed via an atlassian.net domain, it is hosted by Atlassian and is not vulnerable to this issue.

Tags · CWE

KEVPre-auth

CWE-20

CWE-287

CAPEC-3

CAPEC-7

CAPEC-8

CAPEC-9

CAPEC-10

CAPEC-13

CAPEC-14

CAPEC-22

CAPEC-23

CAPEC-24

CAPEC-28

CAPEC-31

CAPEC-42

CAPEC-43

CAPEC-45

CAPEC-46

CAPEC-47

CAPEC-52

CAPEC-53

CAPEC-57

CAPEC-63

CAPEC-64

CAPEC-67

CAPEC-71

CAPEC-72

CAPEC-73

CAPEC-78

CAPEC-79

CAPEC-80

CAPEC-81

CAPEC-83

CAPEC-85

CAPEC-88

CAPEC-94

CAPEC-101

CAPEC-104

CAPEC-108

CAPEC-109

CAPEC-110

CAPEC-114

CAPEC-115

CAPEC-120

CAPEC-135

CAPEC-136

CAPEC-151

CAPEC-153

CAPEC-182

CAPEC-194

CAPEC-209

CAPEC-230

CAPEC-231

CAPEC-250

CAPEC-261

CAPEC-267

CAPEC-473

CAPEC-588

CAPEC-593

CAPEC-633

CAPEC-650

CAPEC-664

Affected products

Confluence_data_center 8.0.0–8.3.3Confluence_data_center 8.4.0–8.4.3Confluence_data_center 8.5.0–8.5.2Confluence_server 8.0.0–8.3.3Confluence_server 8.4.0–8.4.3Confluence_server 8.5.0–8.5.2

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

2023-01-01

Published

2023-10-05

Added to KEV

2023-10-05

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N