Blog Post

The Human Connection Blog
1 MIN READ

New Cyber Threat Intelligence Lab release!

BenMcCarthy's avatar
BenMcCarthy
Icon for Immerser rankImmerser
6 months ago

Today we have a brand new set of labs related to CVE-2023-22527: Confluence OGNL RCE

On January 16, 2024, Atlassian released an advisory for CVE-2023-22527. This template injection vulnerability affects out-of-date Confluence Data Center and Server products, allowing attackers to achieve remote code execution (RCE) on an affected version.

In this lab, you'll learn about this latest vulnerability and have access to a compromised version, where you'll identify indicators of compromise in the access logs.

Who's it for?

  • SOC Analysts
  • Threat Hunters
  • Incident Responders
  • Penetration Testers

What are the key takeaways?

  • Outline how attackers can abuse legitimate processes for malicious means
  • Identify indicators of compromise in Confluence access logs

Cyber Pro licensed users can access the new collection here.

Published 6 months ago
Version 1.0
No CommentsBe the first to comment