Ddv_Uac

**Name of the Vulnerable Software and Affected Versions** Confluence Data Center and Server versions 7.13.0 through 7.19.17 Confluence Data Center and Server versions 8.5.0 through 8.5.4 Confluence Data Center and Server versions 8.7.0 through 8.7.1 **Description** This is a High severity Remote Code Execution (RCE) vulnerability that allows an unauthenticated attacker to expose assets in the environment susceptible to exploitation, with high impact to confidentiality and no impact to integrity or availability. The vulnerability is related to insufficient input validation. **Recommendations** For Confluence Data Center and Server 7.19: Upgrade to a release 7.19.18, or any higher 7.19.x release For Confluence Data Center and Server 8.5: Upgrade to a release 8.5.5 or any higher 8.5.x release For Confluence Data Center and Server 8.7: Upgrade to a release 8.7.2 or any higher release

**Name of the Vulnerable Software and Affected Versions** Confluence Data Center and Server versions 2.1.0 through 7.19.17 Confluence Data Center and Server versions 8.5.0 through 8.5.4 Confluence Data Center and Server versions 8.7.0 through 8.7.1 **Description** This issue is a Remote Code Execution (RCE) vulnerability that allows an unauthenticated attacker to remotely expose assets in the environment, susceptible to exploitation. It has a high impact on confidentiality, integrity, and availability and requires user interaction. The vulnerability is related to insufficient input validation. **Recommendations** For Confluence Data Center and Server 7.19: Upgrade to a release 7.19.18, or any higher 7.19.x release For Confluence Data Center and Server 8.5: Upgrade to a release 8.5.5 or any higher 8.5.x release For Confluence Data Center and Server 8.7: Upgrade to a release 8.7.2 or any higher release