Last October, Atlassian released a patch for %%cve:2023-22515%% [1]. This vulnerability allowed attackers to create new admin users in Confluence. Today, I noticed a bit a “flare up” in a specific exploit variant.
Article Link: https://isc.sans.edu/diary/rss/30600