![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibjKshAs4eJvMhmFkH6asTZb5uk7h74h7Y5Y-02H_PoTB9I-H4wYie2kCaLhsqH5Trdee-F4eYj-Y8aQAZOcKivtPuZJ77IY0eYkp0zKDAeg3wKkkr8rB9L_nLfoTCf8Xb7TXwLVV8HjzVNHpXlnuMUaCo5IIKhIIQ408h7ZZuzFkzXjRfWgXagVXb4m1v/s1600/Atlassian.jpg)
Atlassian has released fixes to contain an actively exploited critical zero-day flaw impacting publicly accessible Confluence Data Center and Server instances.
The vulnerability, tracked as CVE-2023-22515, is remotely exploitable and allows external attackers to create unauthorized Confluence administrator accounts and access Confluence servers.
It does not impact Confluence versions prior to
Source:: The Hackers News