Atlassian Security Update

Published On: July 24, 2023Categories: Cyber Alerts

In today’s SensCy Cyber Alert, your SensCy team recommends Atlassian users to apply the necessary patches. The three bugs are of critical severity and relate to remote code execution (RCE).

Atlassian revealed the three vulnerability in its latest Security Bulletin.

The most severe vulnerability, tracked CVE-2023-22508, was introduced in Confluence version 7.4.0.

The second vulnerability, tracked CVE-2023-25505, was introduced in Confluence version 8.0.0. Both vulnerabilities can allow hacker to execute arbitrary code with impact on confidentiality, integrity, and availability. No user interaction is needed but the hacker would need to authenticate. Both vulnerabilities were remediated in Confluence version 8.3.2 and 8.4.

if you are unable to upgrade to one of these versions should at least update to version 8.2.0, which patches CVE-2023-22508.

The last vulnerability, tracked CVE-2023-22506, is remote code execution vulnerability in Bamboo Data Center version 8.0.0. It was remediated in versions

9.2.3 and 9.3.1.

Related Posts

  • February 28, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Alert, your SensCy team recommends Google Chrome Browser users to install the new Chrome Version immediately. Below are the new available [...]

  • February 13, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Brief, your SensCy team reviewed Microsoft’s latest series of patches released on Tuesday, February 13, 2023. Today’s Patch Tuesday comes fix [...]

  • February 7, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Alert, your SensCy team recommends Google Chrome Browser users to install the new Chrome Version immediately. The new update remediate two [...]