vulnerability

Atlassian Confluence: Unrestricted Upload of File with Dangerous Type (CVE-2020-29450)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:N/A:P)	Jan 19, 2021	Jan 27, 2021	Sep 18, 2024

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:N/A:P)

Published

Jan 19, 2021

Added

Jan 27, 2021

Modified

Sep 18, 2024

Description

Affected versions of Atlassian Confluence Server and Data Center allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the avatar upload feature. The affected versions are before version 7.2.0.

References

CVE-2020-29450
https://attackerkb.com/topics/CVE-2020-29450

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today