Bleeping Computer

Atlassian warns of exploit for Confluence data wiping bug, get patching

Atlassian warned admins that a public exploit is now available for a critical Confluence security flaw that can be used in data destruction attacks targeting Internet-exposed and unpatched instances.
Bleeping Computer

Atlassian warns of critical Confluence flaw leading to data loss

Australian software company Atlassian warned admins to immediately patch Internet-exposed Confluence instances against a critical security flaw that could lead to data loss following successful ...
Ars Technica

Critical vulnerability in Atlassian Confluence server is under “mass exploitation”

A critical vulnerability in Atlassian’s Confluence enterprise server app that allows for malicious commands and resets servers is under active exploitation by threat actors in attacks that install ...

Security patches: Malicious code attacks on Atlassian Bamboo possible

Atlassian Bamboo Data Center and Server, Bitbucket Data Center and Server, Confluence Data Center and Server, ...
Dark Reading

Actively Exploited Atlassian Zero-Day Bug Allows Full System Takeover

A critical security vulnerability in Atlassian Confluence is under active attack, opening servers to full system takeover, security researchers warned. The bug (CVE-2022-26134) is a command-injection ...