Vulnerability detail
Enriched intelligence for a single CVE
Critical
CVE-2023-22527
PUBLISHEDA template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an...
- Vendor
- Atlassian
- Product
- Confluence Data Center, Confluence Server
- Published
- Jan 16, 2024
- EPSS
- —
Description
A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supported versions of Confluence Data Center and Server are not affected by this vulnerability as it was ultimately mitigated during regular version updates. However, Atlassian recommends that customers take care to install the latest version to protect their instances from non-critical vulnerabilities outlined in Atlassian’s January Security Bulletin.
CVSS scores
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
SSVC decision points
- Exploitation
- active
- Automatable
- Yes
- Technical impact
- total
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CISA | Jan 24, 2024 |
Scanner integrations
| Scanner | Reference | Detected |
|---|---|---|
| Metasploit | https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/atlassian_confluence_rce_cve_2023_22527.rb | Apr 28, 2025 |
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-22527.yaml | Apr 25, 2025 |
Potential proof of concepts
These PoCs are unverified and could contain malware. Use at your own risk.
metasploit · Created Unknown
Metasploit module for CVE-2023-22527
github · Created 2024-02-26 02:34:44 UTC · 40 stars
confluence CVE-2023-22527 漏洞利用工具,支持冰蝎/哥斯拉内存马注入,支持设置 http 代理
github · Created 2024-02-11 16:46:55 UTC · 74 stars
CVE-2023-22527 内存马注入工具
github · Created 2024-01-25 10:52:39 UTC · 5 stars
CVE-2023-22527 - RCE (Remote Code Execution) Vulnerability In Confluence Data Center and Confluence Server PoC
github · Created 2024-01-24 04:44:59 UTC · 4 stars
Exploit for CVE-2023-22527 - Atlassian Confluence Data Center and Server
github · Created 2024-01-23 17:07:15 UTC · 10 stars
An Exploitation tool to exploit the confluence server that are vulnerable to CVE-2023-22527 leads to RCE
github · Created 2024-01-23 10:55:28 UTC · 10 stars
Atlassian Confluence - Remote Code Execution
github · Created 2024-01-23 08:53:46 UTC · 4 stars
Atlassian Confluence - Remote Code Execution (CVE-2023-22527)
github · Created 2024-01-23 08:06:15 UTC · 12 stars
This repository presents a proof-of-concept of CVE-2023-22527
github · Created 2024-01-23 07:10:55 UTC · 19 stars
[Confluence] CVE-2023-22527 realworld poc
github · Created 2024-01-23 02:17:36 UTC · 21 stars
A critical severity Remote Code Execution (RCE) vulnerability (CVE-2023-22527) was discovered in Confluence Server and Data Center.
github · Created 2024-01-22 19:02:59 UTC · 5 stars
github · Created 2024-01-22 11:38:55 UTC · 2 stars
github · Created 2024-01-17 10:21:00 UTC · 1 stars
CVE-2023-22527 - RCE (Remote Code Execution) Vulnerability In Confluence Data Center and Confluence Server PoC
github · Created 2024-01-16 13:50:49 UTC · 3 stars
github · Created 2024-01-16 08:46:21 UTC · 24 stars
CVE-2023-22527 - RCE (Remote Code Execution) Vulnerability In Confluence Data Center and Confluence Server PoC
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Exploit Used in Malware
-
Added to KEVIntel
-
Detected by Nuclei
-
Detected by Metasploit