Confluence Server@8.4.0 Security Vulnerabilities and Issues — Confluence Server@8.4.0 CVE List

Lucene search

AtlassianConfluence Server8.4.0

4 matches found

CVE•added 2023/10/04 2:15 p.m.•835 views

CVE-2023-22515

Atlassian has been made aware of an issue reported by a handful of customers where external attackers may have exploited a previously unknown vulnerability in publicly accessible Confluence Data Center and Server instances to create unauthorized Confluence administrator accounts and access Confluen...

10CVSS9.3AI score0.94365EPSS

In wild

CVE•added 2023/10/31 3:15 p.m.•515 views

CVE-2023-22518

All versions of Confluence Data Center and Server are affected by this unexploited vulnerability. This Improper Authorization vulnerability allows an unauthenticated attacker to reset Confluence and create a Confluence instance administrator account. Using this account, an attacker can then perform...

10CVSS9.4AI score0.94375EPSS

In wild

CVE•added 2024/05/21 11:15 p.m.•453 views

CVE-2024-21683

This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of Confluence Data Center and Server. This RCE (Remote Code Execution) vulnerability, with a CVSS Score of 7.2, allows an authenticated attacker to execute arbitrary code which has high impact to confidential...

8.8CVSS8.8AI score0.94054EPSS

In wildWeb

CVE•added 2024/08/21 4:15 p.m.•122 views

CVE-2024-21690

This High severity Reflected XSS and CSRF (Cross-Site Request Forgery) vulnerability was introduced in versions 7.19.0, 7.20.0, 8.0.0, 8.1.0, 8.2.0, 8.3.0, 8.4.0, 8.5.0, 8.6.0, 8.7.1, 8.8.0, and 8.9.0 of Confluence Data Center and Server. This Reflected XSS and CSRF (Cross-Site Request Forgery) vul...

8.2CVSS6.5AI score0.00548EPSS