Confluence auth bypass enabling full instance reset and admin takeover. Cerber ransomware gang exploited this for widespread Confluence server encryption. Take instances offline until patched if internet-exposed.
Atlassian Confluence Data Center and Server improper authorization vulnerability allowing unauthenticated attacker to reset Confluence and create new admin account.
Exploit-DB.ai delivers real-time AI-triaged zero-day alerts directly to your inbox.
Activate Supernova →