CVE-2023-22527CISA KEVEPSS p100.0%

CVE-2023-22527Atlassian Confluence Data Center and Server Template Injection Vulnerability

Atlassian / Confluence Data Center and Server

Description

Atlassian Confluence Data Center and Server contain an unauthenticated OGNL template injection vulnerability that can lead to remote code execution.

Scoring

EPSS99.98% probability of exploitation · percentile 100.0% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2024-01-24

(incoming)1

TypeTargetConfidenceTier
KEVEntryAtlassian Confluence Data Center and Server Template Injection Vulnerabilitykev-cve-2023-225270%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Atlassian Confluence Server and Data Center Remote Code Execution Vulnerability
CVE
Atlassian Confluence Server and Data Center Server-Side Template Injection Vulnerability
CVE
Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability
CVE
Atlassian Confluence Data Center and Server Improper Authorization Vulnerability
CVE
Atlassian Confluence Data Center and Server Broken Access Control Vulnerability
CVE
Atlassian Jira Server and Data Center Server-Side Template Injection Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.