Within our company we make use of the IT security company CyberSprint. they have a webportal which monitors our digital footprint 24x7. They've found a vulernability on our confluence environment - https://knowledgebase.deheus.com/
See attached screenshot with the result.
who do I have to do to mitigate this founded vulnerability?
Could you support me in this?
Many thanks
Is all that error is telling you to do is harden your system. Depending on what information you have there are many different ways to do this.
Here are Atlassian's recommendations on security best practices. https://confluence.atlassian.com/doc/best-practices-for-configuring-confluence-security-216433533.html
If you have very sensitive data in confluence you can do things like: Lock down the application so it can only be accessed through your intranet / VPN, Implement multi factor authentication, Encrypt the DB, etc.
You should work with your security team to determine the best course of action to safeguard your information.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.