Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

🚨Patch your Confluence Server/DC instances! (CVE-2023-22518)

November 8, 2023

This bears repeating: please patch your Confluence instances ASAP.

If you are using Confluence Server or Confluence Data Center, update to a fixed version as soon as you can.

👉 See Atlassian's security bulletin for the list of patched versions: https://confluence.atlassian.com/security/cve-2023-22518-improper-authorization-vulnerability-in-confluence-data-center-and-server-1311473907.html

Naturally there are many Confluence admins in the Enterprise group, so this warranted an alert. Atlassian may have already reached out to you directly if you're a technical contact for an active Confluence license.

Comment
Watch
Like # people like this
1947 views

5 comments

Dave Liao
Dave Liao
Community Champion
November 8, 2023

📌 I will un-pin this article from the Enterprise group on the 20th.

Like
Bill Bailey
Bill Bailey
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
November 8, 2023

Would have been nice to have been alerted to this issue before telling the hacker community. Every license has associated technical contacts who could have been contacted before going public.

Like # people like this
Dave Liao
Dave Liao
Community Champion
November 8, 2023

@Bill Bailey - agreed.

Like Andy Gladstone likes this
David Yu
David Yu
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
November 8, 2023

For the longest time, we've been asking for authentication on all public endpoints if it's operating in private mode. https://jira.atlassian.com/browse/JRASERVER-65521

I guess it's a hard problem to solve; but it would have reduced the severity of a whole class of CVEs.

Like Dave Liao likes this
hbunjes
hbunjes
Contributor
November 8, 2023

We’ve been attacked starting October 26th. The patch was too late for us unfortunately. I don’t think anyone still has a working confluence instance if it’s not patched. 

I got a mail on Oct 31st from Atlassian regarding this security issue. So, I think Atlassian has informed the customers on time as soon as they could. However, I don’t get the statement „There are no reports of active exploitation at this time“ as there were obviously a lot of attacks at this time for various customers. 

Like

Comment

Log in or Sign up to comment
Dave Liao

Dave Liao

Community Champion

About this author

Systems Administrator

Prahok

Philadelphia, PA

166 accepted answers

2,532 total posts

View profile
groups-icon
Enterprise
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.