Lucene search
K

517 matches found

BDU FSTEC
BDU FSTEC
added 2024/01/25 12:0 a.m.6 views

The vulnerability of the Atlassian Confluence Server web server and the Confluence Data Center’s date center, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of the Atlassian Confluence Server web server and the Confluence Data Center is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

8CVSS7.8AI score0.01504EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/01/25 12:0 a.m.8 views

The vulnerability of the Atlassian Confluence Server web server and the Confluence Data Center’s date center, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of the Atlassian Confluence Server web server and the Confluence Data Center are related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

8.3CVSS7.6AI score0.01565EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/01/25 12:0 a.m.7 views

The vulnerability of the Atlassian Confluence Server web server and the Confluence Data Center’s date center, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of the Atlassian Confluence Server web server and the Confluence Data Center is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

8.3CVSS7.8AI score0.01363EPSS
Exploits0References4Affected Software2
Tenable Nessus
Tenable Nessus
added 2024/01/19 12:0 a.m.128 views

Atlassian Confluence < 7.19.17 / 8.0.x < 8.5.5 / 8.6.x < 8.7.2 (CONFSERVER-93516)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-93516 advisory. - This High severity RCE Remote Code Execution vulnerability was introduced in version 7.19.0 of Confluence Data Center. This RCE Remote Code...

8.8CVSS7.9AI score0.01565EPSS
Exploits0References2
Atlassian
Atlassian
added 2024/01/17 6:46 a.m.37 views

DoS (Denial of Service) ch.qos.logback:logback-classic Dependency in Confluence Data Center and Server

This High severity ch.qos.logback:logback-classic Dependency vulnerability was introduced in versions 6.0.1 of Confluence Data Center and Server. This ch.qos.logback:logback-classic Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:...

7.5CVSS7.1AI score0.00682EPSS
Exploits0
Atlassian
Atlassian
added 2024/01/17 6:46 a.m.49 views

Request Smuggling org.apache.tomcat:tomcat-catalina Dependency in Confluence Data Center and Server

This High severity org.apache.tomcat:tomcat-catalina Dependency vulnerability was introduced in versions 6.10.0 of Confluence Data Center and Server. This org.apache.tomcat:tomcat-catalina Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of...

7.5CVSS7.1AI score0.02651EPSS
Exploits0
Atlassian
Atlassian
added 2024/01/17 6:46 a.m.40 views

DoS (Denial of Service) org.apache.avro:avro Dependency in Confluence Data Center and Server

This High severity org.apache.avro:avro Dependency vulnerability was introduced in versions 4.1 of Confluence Data Center and Server. This org.apache.avro:avro Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H allows an...

7.5CVSS8.6AI score0.01772EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/01/17 12:0 a.m.4 views

The vulnerability of the Atlassian Confluence Server web server and the Confluence Data Center’s date center exists due to the failure to take measures to neutralize special elements. This allows attackers to execute arbitrary code.

The vulnerability of the Atlassian Confluence Server and the Confluence Data Center exists due to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by introducing a specially crafted template...

10CVSS8.5AI score0.99984EPSS
Exploits32References5Affected Software2
OSV
OSV
added 2024/01/16 6:15 p.m.6 views

CVE-2023-22512

This High severity DoS Denial of Service vulnerability was introduced in version 5.6.0 of Confluence Data Center and Server. With a CVSS Score of 7.5, this vulnerability allows an unauthenticated attacker to cause a resource to be unavailable for its intended users by temporarily or indefinitely...

7.5CVSS5.8AI score0.13734EPSS
Exploits0References2
OSV
OSV
added 2024/01/16 5:15 a.m.4 views

CVE-2024-21673

This High severity Remote Code Execution RCE vulnerability was introduced in versions 7.13.0 of Confluence Data Center and Server. Remote Code Execution RCE vulnerability, with a CVSS Score of 8.0 and a CVSS Vector of CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H allows an authenticated attacker t...

8.8CVSS5.9AI score
Exploits0References2
OSV
OSV
added 2024/01/16 5:15 a.m.4 views

CVE-2023-22527

A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supported versions of Confluence Data Center and Server...

9.8CVSS5.8AI score0.99984EPSS
Exploits32References5
Cvelist
Cvelist
added 2024/01/16 5:0 a.m.33 views

CVE-2024-21674

This High severity Remote Code Execution RCE vulnerability was introduced in version 7.13.0 of Confluence Data Center and Server. Remote Code Execution RCE vulnerability, with a CVSS Score of 8.6 and a CVSS Vector of CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N allows an unauthenticated attacker ...

8.6CVSS8.2AI score0.01768EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/16 5:0 a.m.29 views

CVE-2024-21673

This High severity Remote Code Execution RCE vulnerability was introduced in versions 7.13.0 of Confluence Data Center and Server. Remote Code Execution RCE vulnerability, with a CVSS Score of 8.0 and a CVSS Vector of CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H allows an authenticated attacker t...

8CVSS9AI score0.01504EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/16 5:0 a.m.27 views

CVE-2024-21672

This High severity Remote Code Execution RCE vulnerability was introduced in version 2.1.0 of Confluence Data Center and Server. Remote Code Execution RCE vulnerability, with a CVSS Score of 8.3 and a CVSS Vector of CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H allows an unauthenticated attacker t...

8.3CVSS9.2AI score0.01363EPSS
Exploits0References1
CVE
CVE
added 2024/01/16 5:0 a.m.79 views

CVE-2024-21673

CVE-2024-21673 affects Atlassian Confluence Data Center and Server. The vulnerability is an authenticated remote code execution that was introduced in version 7.13.0, with high impact on confidentiality, integrity, and availability (CVSS v3.0/3.1 base scores 8.0/8.8). Affected versions include 7....

8.8CVSS8.3AI score0.01504EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/01/16 12:0 a.m.61 views

CVE-2023-22527

A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supported versions of Confluence Data Center and Server...

10CVSS10AI score0.99984EPSS
In wildExploits32References4
Positive Technologies
Positive Technologies
added 2024/01/15 12:0 a.m.2 views

PT-2024-1277 · Atlassian · Confluence

Name of the Vulnerable Software and Affected Versions: Confluence Data Center and Server versions 7.13.0 through 7.19.17 Confluence Data Center and Server versions 8.5.0 through 8.5.4 Confluence Data Center and Server versions 8.7.0 through 8.7.1 Description: The vulnerability is related to...

8.8CVSS8AI score0.01504EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2024/01/15 12:0 a.m.2 views

PT-2024-1276 · Atlassian · Confluence

Name of the Vulnerable Software and Affected Versions: Confluence Data Center and Server versions 7.13.0 through 7.19.17 Confluence Data Center and Server versions 8.5.0 through 8.5.4 Confluence Data Center and Server versions 8.7.0 through 8.7.1 Description: This is a High severity Remote Code...

8.6CVSS9AI score0.01768EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2024/01/15 12:0 a.m.4 views

PT-2024-1275 · Atlassian · Confluence

Name of the Vulnerable Software and Affected Versions: Confluence Data Center and Server versions 7.19.0 through 7.19.16 Confluence Data Center and Server versions 8.5.0 through 8.5.4 Confluence Data Center versions 8.7.0 through 8.7.1 Description: The issue is related to insufficient input...

8.8CVSS7AI score0.01565EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2024/01/15 12:0 a.m.1 views

PT-2024-1278 · Atlassian · Confluence

Name of the Vulnerable Software and Affected Versions: Confluence Data Center and Server versions 2.1.0 through 7.19.17 Confluence Data Center and Server versions 8.5.0 through 8.5.4 Confluence Data Center and Server versions 8.7.0 through 8.7.1 Description: This issue is a Remote Code Execution...

8.8CVSS8.3AI score0.01363EPSS
Exploits0References16
Rows per page
Query Builder