Atlassian Confluence Suite Security Update Advisory (CVE-2023-22527)

Jan 17 2024

Overview

An update has been made available to address a remote code execution vulnerability in Atlassian Confluence Data Center and Server. Users of affected versions are advised to update to the latest version.

Affected Products

Confluence Data Center and Server versions 8.0.x, 8.1.x, 8.2.x, 8.3.x, 8.4.x, 8.5.0-8.5.3

Resolved Vulnerabilities

Template Injection vulnerability in Atlassian Confluence Data Center and Server, which could allow unauthorized attackers to perform remote code execution on the target product. (CVE-2023-22527)

Vulnerability Patches

Vulnerability patches were made available in the January 16, 2024 update. Users of Atlassian Confluence Data Center and Server are advised to follow the instructions on the reference site to update to the latest version.

Confluence Data Center and Server: 8.5.4 (LTS) or later
Confluence Data Center: 8.6.0 (Data Center Only) or later, 8.7.1 (Data Center Only) or later

Referenced Sites

[1] https://www.atlassian.com/trust/security/advisories

[2] https://confluence.atlassian.com/pages/viewpage.action?pageId=1333990257

Atlassian Confluence Suite Security Update Advisory (CVE-2023-22527)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Google Chrome browser (120.0.6099.234) security update advisory

Microsoft Edge browser (120.0.6099.224) version security update advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Google Chrome browser (120.0.6099.234) security update advisory

Microsoft Edge browser (120.0.6099.224) version security update advisory