CVE-2024-21679

Name of the Vulnerable Software and Affected Versions Confluence Data Center and Server versions 5.6 through 7.19.13 Confluence Data Center and Server versions 8.0 through 8.5.0

Description This issue allows an unauthenticated attacker to cause a resource to be unavailable for its intended users by disrupting services of a vulnerable host connected to a network. The impact is high on availability, with no impact on confidentiality or integrity, and requires no user interaction.

Recommendations For Confluence Data Center and Server versions 5.6 through 7.19.13, upgrade to a release greater than or equal to 7.19.14. For Confluence Data Center and Server versions 8.0 through 8.5.0, upgrade to a release greater than or equal to 8.5.1. For Confluence Data Center and Server versions 8.6 or above, no upgrade is needed as you are already on a patched version.