BitScan has reported discovering our Confluence Server is vulnerable to CVE-2021-3618 and CVE-2022-41742. We can find no mention of these CVEs on the Atlassian Support site. What action, if any, do we need to take?
We are currently using nginx version 1.18, and are in the process of upgrading our Confluence Server instance to version 7.19.16 in response to the latest Atlassian Security Bulletin (re CVE-2023-22518).
I am not seeing anything either. You could reach out to Atlassian to see if they have any further recommendations?
Thank you, Kian. I submitted a support ticket.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.