GET A DEMO

How to fix CVE-2023-22515 in Confluence

A critical zero-day vulnerability identified as CVE-2023-22515 has emerged, affecting on-premises installations of Confluence Server and Data Center. This vulnerability poses a significant risk as it could potentially allow malicious actors to escalate their privileges within the system, leading to unauthorized access and control. In this post, we delve into what CVE-2023-22515 is, its impact,… Continue reading How to fix CVE-2023-22515 in Confluence

10 security vulnerabilities that had us talking in 2022

Supply chain, SaaS, cloud, IoT — the second new technologies emerge, new security vulnerabilities that use these technologies against us also seem to emerge, turning them into points of weakness and portals through which to attack our businesses. So far, it’s clear that 2022 is no exception, with attacks by entities small and large scanning… Continue reading 10 security vulnerabilities that had us talking in 2022

CVE-2022-26136 and CVE-2022-26137 – fixing the Atlassian vulnerabilities

Atlassian makes the headlines again. After the disclosure of Confluence’s Romote-code execution vulnerability (CVE-2022-26134), Atlassian has released multiple security advisories of critical vulnerabilities. Together with the CVE-2022-26138 announcement, an advisory for two vulnerabilities – CVE-2022-26136 and CVE-2022-26137 – was also released. While CVE-2022-26134 and CVE-2022-26138 affect only the Confluence app, these new CVEs affect multiple… Continue reading CVE-2022-26136 and CVE-2022-26137 – fixing the Atlassian vulnerabilities

How to fix CVE-2022-26138 in Atlassian

Atlassian is urging users to take action on a critical vulnerability found in its Questions for Confluence app – one of three major bugs announced last week.  With Confluence in use across millions of systems for project management and collaboration needs, a critical vulnerability in the product has the potential to cause huge damage if… Continue reading How to fix CVE-2022-26138 in Atlassian