Security Advisory

CVE-2021-26085

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-03 00:00:12

Last updated 2025-10-21 23:25:39

Assigner atlassian

State PUBLISHED

Description

Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a Pre-Authorization Arbitrary File Read vulnerability in the /s/ endpoint. The affected versions are before version 7.4.10, and from version 7.5.0 before 7.12.3.

← Browse all CVEs View on cve.org ↗