Cloudflare observations of Confluence zero day (CVE-2022-26134)
Blog post created on 2022-06-05
In this follow up post published immediately after the disclosure of CVE-2022-26134, after describing the vulnerability at a high level, we proceed to share data regarding exploits in the wild as seen from the Cloudflare network. Working in conjunction with other team members across the organisation we also shared our immediate internal actions after disclosure as well as suggested steps, indicators of compromise (IOCs) and indicators of attack (IOAs).