{"id":1327,"date":"2022-06-03T16:47:33","date_gmt":"2022-06-03T12:47:33","guid":{"rendered":"https:\/\/demo.dedote.com\/cyberdisti\/?p=1327"},"modified":"2022-06-03T16:47:33","modified_gmt":"2022-06-03T12:47:33","slug":"zero-day","status":"publish","type":"post","link":"https:\/\/demo.dedote.com\/cyberdisti\/2022\/06\/03\/zero-day\/","title":{"rendered":"Zero Day"},"content":{"rendered":"

Zero-day Exploited to Target Atlassian Confluence<\/span><\/h1>\n

The Severity of the Vulnerability Was Determined as Critical.<\/span><\/strong><\/p>\n

A zero-day vulnerability is\u00a0a newly discovered software security flaw that has not yet been patched by the developers and, as a result, can be exploited. The term \u201czero-day\u201d is an imaginative time, as this type of cyberattack happens in a very short timeframe from the awareness of the security flaw.<\/p>\n

What Makes the CVE-2022-26134 Important?<\/h2>\n

There is currently no patch available for the newly discovered Atlassian Confluence zero-day vulnerability that is being tracked as CVE-2022-26134.<\/p>\n

This vulnerability is being actively exploited by hackers in order to install web shells.<\/p>\n

Atlassian has been made aware of the current active exploitation of a critical severity unauthenticated remote code execution vulnerability in Confluence Data Center and Server. Further details about the vulnerability are being withheld until a fix is available.<\/p>\n

We expect that security fixes for supported versions of Confluence will begin to be available for customer download within 24 hours (estimated time, by EOD June 3 PDT).<\/p><\/blockquote>\n

Source<\/a><\/p>\n

Confluence Server and Data Center are both vulnerable to the significant unauthenticated remote code execution flaw identified as CVE-2022-26134, which was disclosed by Atlassian in a security warning.<\/p>\n

According to Atlassian, the vulnerability was verified in Confluence Server 7.18.0, and they think that Confluence Server and Data Center 7.4.0 and above are also susceptible to the issue.<\/p>\n

Atlassian rates the severity level of this vulnerability as\u00a0critical<\/strong>, according to the scale published in\u00a0our Atlassian severity levels<\/a>.\u00a0The scale\u00a0allows us to rank the severity as critical, high, moderate or low.<\/p>\n

This is our assessment and you should evaluate its applicability to your own IT environment.<\/p><\/blockquote>\n

Source<\/a><\/p>\n

BleepingComputer<\/a>\u00a0reports that an alert has been issued in order to warn users that malicious actors are actively attacking Confluence Server 7.18.0.<\/p>\n

Because there are no updates available, Atlassian is advising its customers to make their servers unreachable by one of the following means:<\/p>\n