CVE-2020-29445
published 2021-05-07CVE-2020-29445: Affected versions of Confluence Server before 7.4.8, and versions from 7.5.0 before 7.11.0 allow attackers to identify internal hosts and ports via a blind…
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
Affected versions of Confluence Server before 7.4.8, and versions from 7.5.0 before 7.11.0 allow attackers to identify internal hosts and ports via a blind server-side request forgery vulnerability in Team Calendars parameters.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| atlassian | confluence_server | < 7.4.8 | 7.4.8 |
| atlassian | confluence_server | >= 7.5.0 < unspecified | unspecified |
| atlassian | confluence_server | >= 7.5.0 < 7.11.0 | 7.11.0 |
| atlassian | confluence_server | >= unspecified < 7.4.8 | 7.4.8 |
| atlassian | confluence_server | >= unspecified < 7.11.0 | 7.11.0 |