Unrated severityNVD Advisory· Published Mar 25, 2019· Updated Sep 17, 2024
CVE-2019-3395
CVE-2019-3395
Description
The WebDAV endpoint in Atlassian Confluence Server and Data Center before version 6.6.7 (the fixed version for 6.6.x), from version 6.7.0 before 6.8.5 (the fixed version for 6.8.x), and from version 6.9.0 before 6.9.3 (the fixed version for 6.9.x) allows remote attackers to send arbitrary HTTP and WebDAV requests from a Confluence Server or Data Center instance via Server-Side Request Forgery.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<6.6.7||>=6.7.0,<6.8.5||>=6.9.0,<6.9.3+ 1 more
- (no CPE)range: <6.6.7||>=6.7.0,<6.8.5||>=6.9.0,<6.9.3
- (no CPE)range: unspecified
- Range: <6.6.7||>=6.7.0,<6.8.5||>=6.9.0,<6.9.3
Patches
Vulnerability mechanics
References
1- jira.atlassian.com/browse/CONFSERVER-57971mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.