Confluence Server@8.0.0 Security Vulnerabilities and Issues — Confluence Server@8.0.0 CVE List

Lucene search

AtlassianConfluence Server8.0.0

8 matches found

CVE•added 2025/03/17 10:34 p.m.•12207 views

CVE-2023-22512

This High severity DoS (Denial of Service) vulnerability was introduced in version 5.6.0 of Confluence Data Center and Server. With a CVSS Score of 7.5, this vulnerability allows an unauthenticated attacker to cause a resource to be unavailable for its intended users by temporarily or indefinitely ...

7.5CVSS8AI score0.0677EPSS

CVE•added 2023/10/04 2:15 p.m.•835 views

CVE-2023-22515

Atlassian has been made aware of an issue reported by a handful of customers where external attackers may have exploited a previously unknown vulnerability in publicly accessible Confluence Data Center and Server instances to create unauthorized Confluence administrator accounts and access Confluen...

10CVSS9.3AI score0.94365EPSS

In wild

CVE•added 2024/01/16 5:15 a.m.•513 views

CVE-2023-22527

A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supported versions of Confluence Data Center and Server ar...

10CVSS9.7AI score0.94363EPSS

In wildWeb

CVE•added 2024/05/21 11:15 p.m.•453 views

CVE-2024-21683

This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of Confluence Data Center and Server. This RCE (Remote Code Execution) vulnerability, with a CVSS Score of 7.2, allows an authenticated attacker to execute arbitrary code which has high impact to confidential...

8.8CVSS8.8AI score0.94054EPSS

In wildWeb

CVE•added 2023/12/06 5:15 a.m.•122 views

CVE-2023-22522

This Template Injection vulnerability allows an authenticated attacker, including one with anonymous access, to inject unsafe user input into a Confluence page. Using this approach, an attacker is able to achieve Remote Code Execution (RCE) on an affected instance. Publicly accessible Confluence Da...

9CVSS9.3AI score0.42294EPSS

CVE•added 2024/08/21 4:15 p.m.•122 views

CVE-2024-21690

This High severity Reflected XSS and CSRF (Cross-Site Request Forgery) vulnerability was introduced in versions 7.19.0, 7.20.0, 8.0.0, 8.1.0, 8.2.0, 8.3.0, 8.4.0, 8.5.0, 8.6.0, 8.7.1, 8.8.0, and 8.9.0 of Confluence Data Center and Server. This Reflected XSS and CSRF (Cross-Site Request Forgery) vul...

8.2CVSS6.5AI score0.00548EPSS

CVE•added 2023/07/18 9:15 p.m.•93 views

CVE-2023-22505

This High severity RCE (Remote Code Execution) vulnerability known as CVE-2023-22505 was introduced in version 8.0.0 of Confluence Data Center & Server. This RCE (Remote Code Execution) vulnerability, with a CVSS Score of 8, allows an authenticated attacker to execute arbitrary code which has high ...

8.8CVSS8.5AI score0.02891EPSS

CVE•added 2024/11/27 5:15 p.m.•69 views

CVE-2024-21703

This Medium severity Security Misconfiguration vulnerability was introduced in version 8.8.1 of Confluence Data Center and Server for Windows installations. This Security Misconfiguration vulnerability, with a CVSS Score of 6.4 allows an authenticated attacker of the Windows host to read sensitive ...

6.4CVSS6.5AI score0.0002EPSS