Atlassian Confluence: 8.2.3 → 8.5.25
Atlassian · upgrade impact · Official site ↗
Fixed by upgrading to 8.5.25 iVulnerabilities that affect 8.2.3 but no longer affect 8.5.25 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2023-22518 CRITICAL ● exploited ⚠ ransomware EPSS 94% ✓ cleared in 8.5.25 CVE-2023-22527 CRITICAL ● exploited ⚠ ransomware EPSS 94% ✓ cleared in 8.5.25 CVE-2023-22515 CRITICAL ● exploited ⚠ ransomware EPSS 94% ✓ cleared in 8.5.25 CVE-2024-21683 HIGH EPSS 94% ✓ cleared in 8.5.25 CVE-2023-22522 HIGH EPSS 16% ✓ cleared in 8.5.25 CVE-2023-22512 HIGH EPSS 15% ✓ cleared in 8.5.25 CVE-2023-22505 HIGH EPSS 3% ✓ cleared in 8.5.25 CVE-2024-21686 HIGH EPSS 3% ✓ cleared in 8.5.25 CVE-2024-21677 HIGH EPSS 2% ✓ cleared in 8.5.25 CVE-2024-21678 HIGH EPSS 2% ✓ cleared in 8.5.25 CVE-2024-21690 HIGH EPSS 1% ✓ cleared in 8.5.25 CVE-2024-21703 MEDIUM EPSS 0% ✓ cleared in 8.5.25