Path traversal vulnerability in Atlassian Confluence Server - CVE-2024-21677 (linux)ID: oval:org.secpod.oval:def:98649 | Date: (C)2024-03-29 (M)2024-03-29 |
Class: VULNERABILITY | Family: unix |
The host is installed with Atlassian Confluence Server before 7.19.20 or 7.20.0 before 8.5.7 and is prone to a path traversal vulnerability. A flaw is present in the application which fails to properly handle an issue in unspecified vectors. Successful exploitation allows an unauthenticated attacker to exploit an undefinable vulnerability which has high impact to confidentiality, high impact to integrity, high impact to availability, and requires user interaction.
Product: |
Atlassian Confluence Server |