vulnerability

Atlassian Confluence: Unrestricted Upload of File with Dangerous Type (CVE-2020-29450)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:N/A:P)	2021-01-19	2021-01-27	2024-09-18

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:N/A:P)

Published

2021-01-19

Added

2021-01-27

Modified

2024-09-18

Description

Affected versions of Atlassian Confluence Server and Data Center allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the avatar upload feature. The affected versions are before version 7.2.0.

Solution

References

CVE-2020-29450
https://attackerkb.com/topics/CVE-2020-29450

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today