Because of the role the Confluence Server plays in managing documentation and knowledge data bases, the researchers recommend users upgrade to patch CVE-2024-21683 as soon as possible.
More than 200,000 Atlassian Confluence Data Center and Confluence Server instances could be compromised in intrusions targeting the high-severity remote code execution vulnerability, tracked as CVE-2024-21683, reports Cybernews.
CyberScoop reports that federal IT contractor CGI Federal revealed that the breach of its systems that resulted in the compromise of data from nearly 6,600 current and former employees at the Government and Accountability Office stemmed from the exploitation of a vulnerability affecting some Atlassian Confluence Data Center and Server versions.