US Cybercom says mass exploitation of Atlassian Confluence vulnerability 'ongoing and expected to accelerate'

ZDNet -

US Cybercom has sent out a public notice warning IT teams that CVE-2021-26084 — related to Atlassian Confluence — is actively being exploited.

“Mass exploitation of Atlassian Confluence CVE-2021-26084 is ongoing and expected to accelerate. Please patch immediately if you haven’t already — this cannot wait until after the weekend,” US Cybercom sent out in a tweet on Friday ahead of the Labor Day weekend holiday. 

A number of IT leaders took to social media to confirm that it was indeed being exploited.

Atlassian released an advisory about the vulnerability on August 25, explaining that the “critical severity security vulnerability” was found in Confluence Server and Data Center versions before version 6.13.23, from version 6.14.0 before 7.4.11, from version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.

“An OGNL injection vulnerability exists that would allow an authenticated user, and in some instances unauthenticated user, to execute arbitrary code on a Confluence Server or

The article US Cybercom says mass exploitation of Atlassian Confluence vulnerability 'ongoing and expected to accelerate' originally appeared on ZDNet.

Read More.....