The CyberRisk Summit is back: Join us on Dec 6. as we recap the cyber risk landscape in 2022 | Get free ticket >> 

Live webinar, Oct 13: Attend to learn how you can deduplicate vulnerability and deliver a smarter approach to cyber risk management  | Register  >>

New report: Mapping MITRE ATT&CK framework to CVEs |  Read more  >>

CVE-2022-26136 and CVE-2022-26137 – fixing the Atlassian vulnerabilities

Atlassian makes the headlines again. After the disclosure of Confluence’s Romote-code execution vulnerability (CVE-2022-26134), Atlassian has released multiple security advisories of critical vulnerabilities. Together with the CVE-2022-26138 announcement, an advisory for two vulnerabilities – CVE-2022-26136 and CVE-2022-26137 – was also released. While CVE-2022-26134 and CVE-2022-26138 affect only the Confluence app, these new CVEs affect multiple… Continue reading CVE-2022-26136 and CVE-2022-26137 – fixing the Atlassian vulnerabilities