Confluence – Critical unauthenticated remote code execution vulnerability (confluence.atlassian.com) 14 points by yabones 4y ago ↗ HN
[–] yabones 4y ago ↗ The discoverers of the vulnerability posted this write-up: https://www.volexity.com/blog/2022/06/02/zero-day-exploitati...This looks like a bad one, folks. Their advice is "turn off your confluence server until a patch is available". [–] seizethegdgap 4y ago ↗ Turn off external access to your Confluence server.Doesn't look like they got ours before I got to it, thankfully.
[–] seizethegdgap 4y ago ↗ Turn off external access to your Confluence server.Doesn't look like they got ours before I got to it, thankfully.
[–] lamontcg 4y ago ↗ https://news.ycombinator.com/item?id=31601976https://news.ycombinator.com/item?id=31602288
3 comments
[ 1.8 ms ] story [ 12.8 ms ] threadThis looks like a bad one, folks. Their advice is "turn off your confluence server until a patch is available".
Doesn't look like they got ours before I got to it, thankfully.
https://news.ycombinator.com/item?id=31602288