AESDDoS bot exploits CVE-2019-3396 flaw to hit Atlassian Confluence Server
Security Affairs
APRIL 28, 2019
The flaw exploited in the attacks, tracked as CVE-2019-3396 , is a server-side template injection vulnerability that resides in the Widget Connector macro in Confluence Server. Threat actors leverage the vulnerability to install denial of service (DDoS) malware and crypto-currency miners, and to remotely execute code.
Let's personalize your content