CVE-2023-22527

EUVD-2023-26667
A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action.

Most recent supported versions of Confluence Data Center and Server are not affected by this vulnerability as it was ultimately mitigated during regular version updates. However, Atlassian recommends that customers take care to install the latest version to protect their instances from non-critical vulnerabilities outlined in Atlassian’s January Security Bulletin.
Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
atlassianconfluence_data_center
8.0.0 ≤
𝑥
< 8.5.4
atlassianconfluence_data_center
8.7.0
atlassianconfluence_server
8.0.0 ≤
𝑥
< 8.5.4
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
atlassianconfluence_data_center
8.0.0 ≤
𝑥
< 8.5.4
ADP
atlassianconfluence_server
8.0.0 ≤
𝑥
< 8.5.4
ADP
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/176789/Atlassian-Confluence-SSTI-Injection.html
https://confluence.atlassian.com/pages/viewpage.action?pageId=1333335615
https://jira.atlassian.com/browse/CONFSERVER-93833
http://packetstormsecurity.com/files/176789/Atlassian-Confluence-SSTI-Injection.html
https://confluence.atlassian.com/pages/viewpage.action?pageId=1333335615
https://jira.atlassian.com/browse/CONFSERVER-93833
https://www.vicarius.io/vsociety/posts/pwning-confluence-via-ognl-injection-for-fun-and-learning-cve-2023-22527
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-22527