Rule Info
Name
CVE-2023-22518 Exploitation Attempt - Vulnerable Endpoint Connection (Proxy)
Author
Andreas Braathen (mnemonic.io)
Description
Detects exploitation attempt of CVE-2023-22518 (Confluence Data Center / Confluence Server), where an attacker can exploit vulnerable endpoints to e.g. create admin accounts and execute arbitrary commands.
Date
2023-11-14 00:00:00
Modified
None
Id
27d2cdde-9778-490e-91ec-9bd0be6e8cc6
Tags
detection.emerging-threats attack.initial-access attack.t1190 cve.2023-22518 DEMO
Type
Community Rule
Link to Public Repo