Affected versions of Confluence Server before 7.4.8, and versions from 7.5.0 before 7.11.0 allow attackers to identify internal hosts and ports via a blind server-side request forgery vulnerability in Team Calendars parameters.
References
Link | Resource |
---|---|
https://jira.atlassian.com/browse/CONFSERVER-61453 | Issue Tracking Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: atlassian
Published: 2021-04-22T00:00:00
Updated: 2021-06-17T12:15:42
Reserved: 2020-12-01T00:00:00
Link: CVE-2020-29445
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-07T06:15:09.090
Modified: 2022-05-13T20:53:31.230
Link: CVE-2020-29445
JSON object: View
Redhat Information
No data.
CWE