More than 200,000 Atlassian Confluence Data Center and Confluence Server instances could be compromised in intrusions targeting the high-severity remote code execution vulnerability, tracked as CVE-2024-21683, reports Cybernews.
Organizations should brace for mass exploitation of CVE-2023-22515, an uber-critical security bug that opens the door to crippling supply chain attacks on downstream victims.
Patch now: The Atlassian security vulnerability appears to be a remotely exploitable privilege-escalation bug that cyberattackers could use to crack collaboration environments wide open.