Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

🚨Patch your Confluence Server/DC instances! (CVE-2023-22518)

November 8, 2023

This bears repeating: please patch your Confluence instances ASAP.

If you are using Confluence Server or Confluence Data Center, update to a fixed version as soon as you can.

👉 See Atlassian's security bulletin for the list of patched versions: https://confluence.atlassian.com/security/cve-2023-22518-improper-authorization-vulnerability-in-confluence-data-center-and-server-1311473907.html

Naturally there are many Confluence admins in the Enterprise group, so this warranted an alert. Atlassian may have already reached out to you directly if you're a technical contact for an active Confluence license.

Comment
Watch
Like # people like this
1801 views

5 comments

Comment

Log in or Sign up to comment
Dave Liao
Dave Liao
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
November 8, 2023

📌 I will un-pin this article from the Enterprise group on the 20th.

Like
Bill Bailey
Bill Bailey
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
November 8, 2023

Would have been nice to have been alerted to this issue before telling the hacker community. Every license has associated technical contacts who could have been contacted before going public.

Like # people like this
Dave Liao
Dave Liao
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
November 8, 2023

@Bill Bailey - agreed.

Like Andy Gladstone likes this
David Yu
David Yu
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
November 8, 2023

For the longest time, we've been asking for authentication on all public endpoints if it's operating in private mode. https://jira.atlassian.com/browse/JRASERVER-65521

I guess it's a hard problem to solve; but it would have reduced the severity of a whole class of CVEs.

Like Dave Liao likes this
hbunjes
hbunjes
Contributor
November 8, 2023

We’ve been attacked starting October 26th. The patch was too late for us unfortunately. I don’t think anyone still has a working confluence instance if it’s not patched. 

I got a mail on Oct 31st from Atlassian regarding this security issue. So, I think Atlassian has informed the customers on time as soon as they could. However, I don’t get the statement „There are no reports of active exploitation at this time“ as there were obviously a lot of attacks at this time for various customers. 

Like
Dave Liao

Dave Liao

Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader

About this author

Systems Administrator

Prahok

Philadelphia, PA

164 accepted answers

2,490 total posts

View profile
groups-icon
Enterprise
TAGS
AUG Leaders

Atlassian Community Events

    See all events