On January 16, 2024, Atlassian issued a security update to patch CVE-2023-22527, a critical remote code execution flaw in Confluence Data Center and Confluence Server. The exploit impacts all Confluence Data Center and Server 8 versions released prior to December 5, 2023. Atlassian’s security update is part of a wider bulletin affecting a total of 29 vulnerabilities across several of its products. Atlassian Confluence exploits have a history of being widely-exploited by threat actors. While no proof of active exploitation in the wild has yet been identified, threat actors will very likely leverage this exploit against unpatched networks in the short term.