Source |
IT Security Guru |
Identifiant |
3358698 |
Date de publication |
2021-09-09 10:25:08 (vue: 2021-09-10 12:06:18) |
Titre |
Jenkins discloses attack on its Atlassian Confluence service |
Texte |
The open source automation server Jenkins has disclosed a successful attack on its Confluence service. Attackers abused an Open Graph Navigation Library (OGNL) injection flaw – the same vulnerability type involved in the notorious 2017 Equifax hack – capable of leading to remote code execution (RCE) in Confluence Server and Data Center instances. Rated CVSS […]
|
Envoyé |
Oui |
Condensat |
2017 abused atlassian attack attackers automation capable center code confluence cvss data disclosed discloses equifax execution flaw graph hack has injection instances involved its jenkins leading library navigation notorious ognl open rated rce remote same server service source successful type vulnerability |
Tags |
Hack
Vulnerability
Guideline
|
Stories |
Equifax
Equifax
|
Notes |
|
Move |
|