Last week, Atlassian published an advisory for CVE-2023-22518. The vulnerability is a trivial to exploit authentication bypass vulnerability [1]. Atlassian emphasized the importance of the advisory with a quote from its CISO: “There are no reports of active exploitation at this time; customers must take immediate action to protect their instances.” On Friday, Atlassian confirmed that attackers are actively exploiting the vulnerability.
Article Link: https://isc.sans.edu/diary/rss/30376