CVE-2017-7415

Published: Apr 27, 2017
Updated: Apr 13, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2017-7415" target="_blank" rel="noopener"> CVE-2017-7415
Severity: High
Exploit:

Atlassian Confluence 6.x before 6.0.7 allows remote attackers to bypass authentication and read any blog or page via the drafts diff REST resource.

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
atlassian / confluence_server	6.0.4	6.0.4.x
atlassian / confluence_server	6.0.3	6.0.3.x
atlassian / confluence_server	6.0.6	6.0.6.x
atlassian / confluence_server	6.0.5	6.0.5.x
atlassian / confluence_server	6.0.2	6.0.2.x
atlassian / confluence_server	6.0.1	6.0.1.x
atlassian / confluence_server	6.0.0	6.0.0.x