[Atlassian Advisory] – Atlassian Critical and High Vulnerabilities in Confluence, Jira, and other Atlassian Products
Threat Assessment*: See Advisory for details (One Critical, and Multiple High Severity)
On January 16th, Atlassian published two security advisories: Critical Security Advisory for CVE-2023-22527 (Remote Code Execution Vulnerability in Out-of-Date Versions of Confluence Data Center and Server [1] and January 2024 Security Bulletin [2] with high severity vulnerabilities in Jira, Confluence and other Atlassian products. Administrators and users are encouraged to review the provided web links and perform the suggested mitigations and immediately apply the necessary updates.
| What Happened? | On January 16th, Atlassian published two security advisories: Critical Security Advisory for CVE-2023-22527 (Remote Code Execution Vulnerability in Out-of-Date Versions of Confluence Data Center and Server [1] and January 2024 Security Bulletin [2] with high severity vulnerabilities in Jira, Confluences and other Atlassian products. Administrators and users are encouraged to review the provided web links and perform the suggested mitigations and immediately apply the necessary updates. |
| Who is Impacted? | Details:CVE-2023-22527Severity: CriticalCVSS: 10Impacted Versions: 8.0.x, 8.1.x, 8.2.x, 8.3.x, 8.4.x, 8.5.0-8.5.3This RCE (Remote Code Execution) vulnerability affects out-of-date Confluence Data Center and Server 8 versions released before Dec. 5, 2023.CVE-2024-21672Severity: HighCVSS: 8.3Impacted Versions: Confluence Data Center and Server, All versions including and after 2.1CVE-2024-21674Severity: HighCVSS: 8.6Impacted Versions: Confluence Data Center and Server, All versions including and after 1.0.0CVE-2022-42252Severity: HighCVSS: 7.5Impacted Versions: Jira Software Data Center and Server All versions including and after 9.4.0CVE-2020-25649Severity: HighCVSS: 7.5Impacted Versions: Jira Software Data Center and Server All versions including and after 8.20.0CVE-2020-25649Severity: HighCVSS: 7.5Impacted Versions: Jira Service Management Data Center and Server All versions including and after 4.20.0Please see both the January 2024 Security Bulletin [2] and CVE-2023-22527 Vulnerability in Out-of-Date Versions of Confluence Data Center and Server [1] for all vulnerabilities including other high severity vulnerabilities. |
| When did it Happen? | January 16th, 2024 |
| Actions to Take | Recommendations:If you are impacted by the CVE-2023-22527 Vulnerability in Out-of-Date Versions of Confluence Data Center and Server [1], please update immediately to the patched version.To fix all the vulnerabilities in this bulletin, Atlassian recommends upgrading your instances to the latest version. |
| Where can I Learn More? | References:https://confluence.atlassian.com/security/cve-2023-22527-rce-remote-code-execution-vulnerability-in-confluence-data-center-and-confluence-server-1333990257.html?subid=1693223432&jobid=106379018https://confluence.atlassian.com/security/security-bulletin-january-16-2024-1333335615.html |
| Resources and Support | Need IT Support? Contact UTS quickly and easily with Live Chat! Familiarize yourself with Phishing Scams and take the training so you don’t take the bait! https://informationsecurity.mcmaster.ca/phishing/ Report all suspicious messages to is-spam@mcmaster.ca Join the McMaster IT Team on Microsoft Teams! |
* For CanSSOC advisories, the Threat Assessment has the following 4 scores: LOW, MEDIUM, HIGH, SEVERE/CRITICAL. For other advisories, the threat assessment is based on the severity of the highest CVSS score.
Leave a Reply