THREAT OPS › CVEs › CVE-2021-26085
CVE-2021-26085 — Atlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability
Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a pre-authorization arbitrary file read vulnerability in the /s/ endpoint.
Vulnerability details
- Affected productsConfluence Server
- KEV remediation due2022-04-18