Atlassian Confluence Zero-Day

On June 02, 2022, Atlassian warned that hackers are actively exploiting a zero-day remote code execution vulnerability (CVE-2022-26134) affecting their Confluence Server and Data Center products. Confluence is a web application used for workspace collaboration and can be deployed on-premise or as part of the Atlassian managed cloud. Affected versions include Confluence 7.0.0-7.14.2 and 7.15.0-7.18.0. The U.S. Cybersecurity and Infrastructure Security Agency (CISA), added the zero-day vulnerability to the Known Exploited Vulnerabilities Catalog and has directed federal agencies to block all internet traffic to and from the affected products. It urged agencies to either apply the available patches or remove the affected instances by 5pm ET on June 6, 2022.