Confluence Data Center Security Vulnerabilities and Issues — Confluence Data Center CVE List

Lucene search

AtlassianConfluence Data Center

4 matches found

CVE•added 2025/03/17 10:34 p.m.•12203 views

CVE-2023-22512

This High severity DoS (Denial of Service) vulnerability was introduced in version 5.6.0 of Confluence Data Center and Server. With a CVSS Score of 7.5, this vulnerability allows an unauthenticated attacker to cause a resource to be unavailable for its intended users by temporarily or indefinitely ...

7.5CVSS8AI score0.10394EPSS

CVE•added 2022/02/15 4:15 a.m.•104 views

CVE-2021-43940

Affected versions of Atlassian Confluence Server and Data Center allow authenticated local attackers to achieve elevated privileges on the local system via a DLL Hijacking vulnerability in the Confluence installer. This vulnerability only affects installations of Confluence Server and Data Center o...

7.8CVSS7.3AI score0.00155EPSS

CVE•added 2022/11/15 1:15 a.m.•59 views

CVE-2022-42977

The Netic User Export add-on before 1.3.5 for Atlassian Confluence has the functionality to generate a list of users in the application, and export it. During export, the HTTP request has a fileName parameter that accepts any file on the system (e.g., an SSH private key) to be downloaded.

7.5CVSS7.5AI score0.00311EPSS

CVE•added 2022/11/15 1:15 a.m.•56 views

CVE-2022-42978

In the Netic User Export add-on before 1.3.5 for Atlassian Confluence, authorization is mishandled. An unauthenticated attacker could access files on the remote system.

7.5CVSS7.6AI score0.0049EPSS