Description
Due to a broken access control vulnerability in Confluence, an unauthenticated attacker can create an administrator account and get full access to the system
Remediation
Upgrade to the latest version of Confluence
References
Related Vulnerabilities
MySQL CVE-2021-35646 Vulnerability (CVE-2021-35646)
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-21336)
OpenSSL Resource Management Errors Vulnerability (CVE-2012-1165)
WebLogic CVE-2022-21260 Vulnerability (CVE-2022-21260)
Play Framework Out-of-bounds Write Vulnerability (CVE-2020-27196)