THREATOPS
THREAT OPSCVEs › CVE-2021-26085

CVE-2021-26085 — Atlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability

CISA KEVExploited: confirmedAtlassian

Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a pre-authorization arbitrary file read vulnerability in the /s/ endpoint.

Vulnerability details