Opportunistic threat actors were discovered actively exploiting a previously published severe security weakness in Atlassian Confluence deployments on Windows and Linux to deploy web shells that resulted in the execution of crypto miners on vulnerable systems. The vulnerability, tracked as CVE-2021-26084 (CVSS score: 9.8), is an OGNL (Object-Graph Navigation Language) injection bug that might be … Continue reading Atlassian Confluence RCE Flaw Abused