Atlassian

Confluence Data Center

36 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2025-22166

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 21.10.2025 16:15:37
  • Zuletzt bearbeitet 05.12.2025 19:22:44

This High severity DoS (Denial of Service) vulnerability was introduced in version 2.0 of Confluence Data Center. This DoS (Denial of Service) vulnerability, with a CVSS Score of 8.3, allows an attacker to cause a resource to be unavailable for it...

6.4

CVE-2024-21703

  • EPSS 0.02%
  • Veröffentlicht 27.11.2024 17:15:10
  • Zuletzt bearbeitet 30.07.2025 17:13:50

This Medium severity Security Misconfiguration vulnerability was introduced in version 8.8.1 of Confluence Data Center and Server for Windows installations. This Security Misconfiguration vulnerability, with a CVSS Score of 6.4 allows an authentic...

8.2

CVE-2024-21690

  • EPSS 0.84%
  • Veröffentlicht 21.08.2024 16:15:07
  • Zuletzt bearbeitet 30.07.2025 13:59:54

This High severity Reflected XSS and CSRF (Cross-Site Request Forgery) vulnerability was introduced in versions 7.19.0, 7.20.0, 8.0.0, 8.1.0, 8.2.0, 8.3.0, 8.4.0, 8.5.0, 8.6.0, 8.7.1, 8.8.0, and 8.9.0 of Confluence Data Center and Server. This Re...

8.7

CVE-2024-21686

  • EPSS 2.88%
  • Veröffentlicht 16.07.2024 20:15:02
  • Zuletzt bearbeitet 19.03.2025 19:15:40

This High severity Stored XSS vulnerability was introduced in versions 7.13 of Confluence Data Center and Server. This Stored XSS vulnerability, with a CVSS Score of 7.3, allows an authenticated attacker to execute arbitrary HTML or JavaScript code ...

8.8

CVE-2024-21683

  • EPSS 94.05%
  • Veröffentlicht 21.05.2024 23:15:07
  • Zuletzt bearbeitet 12.05.2025 16:15:20

This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of Confluence Data Center and Server. This RCE (Remote Code Execution) vulnerability, with a CVSS Score of 7.2, allows an authenticated attacker to execute ar...

8.8

CVE-2024-21677

  • EPSS 1.96%
  • Veröffentlicht 19.03.2024 17:15:09
  • Zuletzt bearbeitet 13.03.2025 18:15:37

This High severity Path Traversal vulnerability was introduced in version 6.13.0 of Confluence Data Center. This Path Traversal vulnerability, with a CVSS Score of 8.3, allows an unauthenticated attacker to exploit an undefinable vulnerability which ...

8.5

CVE-2024-21678

  • EPSS 1.54%
  • Veröffentlicht 20.02.2024 18:15:50
  • Zuletzt bearbeitet 06.05.2025 14:52:00

This High severity Stored XSS vulnerability was introduced in version 2.7.0 of Confluence Data Center. This Stored XSS vulnerability, with a CVSS Score of 8.5, allows an authenticated attacker to execute arbitrary HTML or JavaScript code on a vict...

7.5

CVE-2023-22512

  • EPSS 8.18%
  • Veröffentlicht 16.01.2024 18:15:09
  • Zuletzt bearbeitet 12.05.2025 16:15:18

This High severity DoS (Denial of Service) vulnerability was introduced in version 5.6.0 of Confluence Data Center and Server. With a CVSS Score of 7.5, this vulnerability allows an unauthenticated attacker to cause a resource to be unavailable for i...

7.5

CVE-2024-21674

  • EPSS 1.31%
  • Veröffentlicht 16.01.2024 05:15:08
  • Zuletzt bearbeitet 21.11.2024 08:54:50

This High severity Remote Code Execution (RCE) vulnerability was introduced in version 7.13.0 of Confluence Data Center and Server. Remote Code Execution (RCE) vulnerability, with a CVSS Score of 8.6 and a CVSS Vector of CVSS:3.0/AV:N/AC:L/PR:N/UI:N...

9.8

CVE-2023-22527

Warnung Exploit
  • EPSS 94.36%
  • Veröffentlicht 16.01.2024 05:15:08
  • Zuletzt bearbeitet 24.10.2025 13:38:56

A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supporte...