Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Atlassian Confluence Server 5.7.x < 5.7.1 Remote Disclosure

Medium

Synopsis

The remote Confluence server is affected by a remote disclosure vulnerability.

Description

Versions of Confluence 5.7.x prior to 5.7.1 contain a flaw that is due to the program failing to restrict access to comments on files which are attached to a restricted page. This may allow remote attackers to gain access to sensitive information.

Solution

Upgrade to Confluence 5.7.x version 5.7.1 or later.