ID:9427 - Exploit for Improper Authorization in Confluence Data Center - CVE-2023-22518

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:9427 - Exploit for Improper Authorization in Confluence Data Center - CVE-2023-22518

ID:9427 - Exploit for Improper Authorization in Confluence Data Center - CVE-2023-22518

Published: December 18, 2023


Vulnerability identifier: #VU82592
Vulnerability risk: High
CVE-ID: CVE-2023-22518
CWE-ID: CWE-285
Exploitation vector: Remote access
Vulnerable software:
Confluence Data Center

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to bypass authorization process.

The vulnerability exists due to improper authorization checks. A remote non-authenticated attacker can send specially crafted requests to the server and modify data on the system or perform a denial of service (DoS) attack.


Remediation

Install updates from vendor's website.