Threat Advisory
Show in Graph
Image Description
Common Information
Type Value
UUID d05ff083-f337-4693-925b-c734dc5d97fa
Fingerprint 3cf147cf186d0f3c5e58057841f320ff9b75d101f823f4f4dc31a74ec1297790
Analysis status DONE
Considered CTI value 2
Text language
Published Jan. 25, 2024, 7:36 p.m.
Added to db Feb. 7, 2024, 7:44 p.m.
Last updated Aug. 31, 2024, 2:59 a.m.
Headline Threat Advisory
Title Threat Advisory
Detected Hints/Tags/Attributes 40/2/28
Source URLs
Redirection Url
Details Source https://www.hivepro.com/wp-content/uploads/2024/01/Critical-RCE-Flaw-in-Atlassian-Confluence-Sparks-Active-Exploitation_TA2024030.pdf
URL Provider
Details Provider Source level domain
Details hivepro.com www.hivepro.com
Attributes
Details Type #Events CTI Value
Details CVE 34 
cve-2023-22527
Details Domain 27 
atlassian.net
Details Domain 8 
blog.projectdiscovery.io
Details Domain 1373 
twitter.com
Details Domain 4127 
github.com
Details Domain 28 
confluence.atlassian.com
Details Domain 435 
www.hivepro.com
Details File 1 
1333990257.html
Details Github username 1 
avento
Details IPv4 1 
38.150.12.131
Details IPv4 1 
38.180.75.124
Details IPv4 1 
67.181.73.197
Details IPv4 1 
134.122.186.223
Details IPv4 1 
38.150.12.144
Details IPv4 1 
186.117.138.210
Details IPv4 1 
45.61.137.90
Details MITRE ATT&CK Techniques 60 
T1588.005
Details MITRE ATT&CK Techniques 110 
T1588.006
Details MITRE ATT&CK Techniques 440 
T1055
Details MITRE ATT&CK Techniques 542 
T1190
Details MITRE ATT&CK Techniques 245 
T1203
Details MITRE ATT&CK Techniques 145 
T1588
Details Url 3 
https://blog.projectdiscovery.io/atlassian-confluence-ssti-remote-code-execution
Details Url 1 
https://twitter.com/shadowserver/status/1749372138685915645
Details Url 2 
https://twitter.com/thedfirreport/status/1749066611678466205
Details Url 1 
https://twitter.com/thedfirreport/status/1749424404063232099
Details Url 1 
https://github.com/avento/cve-2023-22527_confluence_rce
Details Url 1 
https://confluence.atlassian.com/security/cve-2023-22527-rce-remote-code-