CVE-2023-22528

Name of the Vulnerable Software and Affected Versions Atlassian Confluence (affected versions not specified)

Description The issue allows a remote attacker to exploit a vulnerable endpoint and gain administrator privileges due to an improper authorization vulnerability. Threat actors have been identified as using this to download and execute a remote payload, with instances of ransomware, specifically Cerber, being delivered after exploitation. The attackers execute a PowerShell command to achieve this.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.