Lucene search
AtlassianCVELIST:CVE-2020-29445HistoryMay 07, 2021 - 6:10 a.m.
CVE-2020-29445
2021-05-0706:10:12
atlassian
www.cve.org
3
confluence server
blind server-side
request forgery
vulnerability
team calendars
Affected versions of Confluence Server before 7.4.8, and versions from 7.5.0 before 7.11.0 allow attackers to identify internal hosts and ports via a blind server-side request forgery vulnerability in Team Calendars parameters.
CNA Affected
[
{
"product": "Confluence Server",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "7.4.8",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "7.5.0",
"versionType": "custom"
},
{
"lessThan": "7.11.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
atlassian
atlassian
nessus
nessus
Atlassian Confluence < 7.11.0 SSRF (CONFSERVER-61453)
2021-05-12 00:00:00
Atlassian Confluence < 7.11.0 Multiple Vulnerabilities
2021-07-05 00:00:00
cve
cve
CVE-2020-29445
2021-05-07 06:15:09
nvd
nvd
CVE-2020-29445
2021-05-07 06:15:09
prion
prion
Server side request forgery (ssrf)
2021-05-07 06:15:00