Atlassian Confluence Server - Improper Authorization (CVE-2023-22518)

All versions of Confluence Data Center and Server are affected by this unexploited vulnerability. There is no impact to confidentiality as an attacker cannot exfiltrate any instance data. Atlassian Cloud sites are not affected by this vulnerability. If your Confluence site is accessed via an atlassian.net domain, it is hosted by Atlassian and is not vulnerable to this issue.

所有版本的 Confluence 数据中心及服务器均受此未被发现的安全漏洞影响。该漏洞不会对机密性造成影响，因为攻击者无法泄露任何实例数据。Atlassian Cloud 站点不受此漏洞影响。若您的 Confluence 站点通过 atlassian.net 域名访问，则该站点由 Atlassian 托管，因此不会受到此问题的威胁。