Sporadic scans for "server-info.action", possibly looking for Confluence Server and Data Center Vulnerability CVE-2023-22515 - SANS Internet Storm Center
Tags
| attack-pattern: | Data Confluence - T1213.001 Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | 4ba3e663-4773-40d9-9cc3-0cb040c98f35 |
| Fingerprint | fe1810d5d3db58c9 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Oct. 25, 2023, midnight |
| Added to db | Oct. 25, 2023, 6:18 p.m. |
| Last updated | Nov. 17, 2024, 8:57 a.m. |
| Headline | Internet Storm Center |
| Title | Sporadic scans for "server-info.action", possibly looking for Confluence Server and Data Center Vulnerability CVE-2023-22515 - SANS Internet Storm Center |
| Detected Hints/Tags/Attributes | 17/1/5 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://isc.sans.edu/diary/rss/30342 |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 142 | ✔ | SANS Internet Storm Center, InfoCON: green | https://isc.sans.edu/rssfeed_full.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 102 | cve-2023-22515 |
|
| Details | Domain | 71 | sans.edu |
|
| Details | File | 4 | cve-2023-22515-privilege-escalation-vulnerability-in-confluence-data-center-and-server-1295682276.html |
|
| Details | Url | 4 | https://confluence.atlassian.com/security/cve-2023-22515-privilege-escalation-vulnerability-in-confluence-data-center-and-server-1295682276.html |
|
| Details | Url | 1 | https://www.rapid7.com/blog/post/2023/10/04/etr-cve-2023-22515-zero-day-privilege-escalation-in-confluence-server-and-data-center |