Code Locket Menu

How Cloudflare helped mitigate the Atlassian Confluence OGNL vulnerability before the PoC was released

Blog post created on 2021-08-09

ResearchSecurityCloudflare

On August 25, 2021, Atlassian released a security advisory for their Confluence Server and Data Center. In this post I describe the actions we took internally to the Cloudflare WAF team to protect our customers. I also share some insights in attack traffic activity before a POC was made widely available.

View blog post.