Unrated severityNVD Advisory· Published May 25, 2023· Updated Oct 1, 2024
CVE-2023-22504
CVE-2023-22504
Description
Affected versions of Atlassian Confluence Server allow remote attackers who have read permissions to a page, but not write permissions, to upload attachments via a Broken Access Control vulnerability in the attachments feature.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: >= 1.1.2
- Range: >= 1.1.2
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.