CVE-2021-26085

⚠ KEVEPSS 94.0%

Atlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability

Added to CISA KEV: 3/28/2022

Description

Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a pre-authorization arbitrary file read vulnerability in the /s/ endpoint.

Affected packages (0)

No package mapping in OSV.