CVE-2023-22522 — Injection in Atlassian Confluence Data Center
Severity
8.8HIGHNVD
EPSS
16.2%
top 5.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedDec 6
Latest updateDec 8
Description
This Template Injection vulnerability allows an authenticated attacker, including one with anonymous access, to inject unsafe user input into a Confluence page. Using this approach, an attacker is able to achieve Remote Code Execution (RCE) on an affected instance. Publicly accessible Confluence Data Center and Server versions as listed below are at risk and require immediate attention. See the advisory for additional details
Atlassian Cloud sites are not affected by this vulnerability. If your…
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9
Affected Packages4 packages
🔴Vulnerability Details
2CVEList▶
CVE-2023-22522: This Template Injection vulnerability allows an authenticated attacker, including one with anonymous access, to inject unsafe user input into a Conflu↗2023-12-06
GHSA▶
GHSA-rcjw-44p8-ppj6: This Template Injection vulnerability allows an authenticated attacker, including one with anonymous access, to inject unsafe user input into a Conflu↗2023-12-06
🔍Detection Rules
4Suricata▶
ET WEB_SPECIFIC_APPS Atlassian Confluence CVE-2023-22522 Vulnerable Server Detected M2 Version 4.x-7.x↗2023-12-08
Suricata▶
ET WEB_SPECIFIC_APPS Atlassian Confluence CVE-2023-22522 Vulnerable Server Detected Version 8.x M2↗2023-12-08
Suricata▶
ET WEB_SPECIFIC_APPS Atlassian Confluence CVE-2023-22522 Vulnerable Server Detected Version 8.x M1↗2023-12-08
Suricata▶
ET WEB_SPECIFIC_APPS Atlassian Confluence CVE-2023-22522 Vulnerable Server Detected M1 Version 4.x-7.x↗2023-12-08