Software program growth and colloboration toolkit behemoth Atlassian is warning of a harmful zero-day in its collaboration software program.

There’s no alert concerning the bug seen on the corporate’s important net web page, which options the corporate’s best-known instruments JIRA (an IT ticketing system) and Trello (a dialogue board), however you’ll discover Confluence Safety Advisory 2022-06-02 on the Confluence sub-site.

The official bug quantity is CVE-2022-26134.

The existence of the bug was outed by US risk response firm Volexity, which claims to have uncovered the vulnerability whereas investigating an in-the-wild incident that “included JSP webshells being written to disk”.