PT-2025-42903 · Atlassian · Confluence
Published
2025-10-21
·
Updated
2025-12-09
·
CVE-2025-22166
CVSS v4.0
8.3
High
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H |
Name of the Vulnerable Software and Affected Versions
Confluence Data Center versions prior to 8.5.25
Confluence Data Center versions prior to 9.2.7
Confluence Data Center versions prior to 10.0.2
Description
The software contains a High severity Denial of Service (DoS) issue. This allows an attacker to disrupt services, potentially making a resource unavailable to intended users. The issue was reported through an internal program. A DoS vulnerability can temporarily or indefinitely disrupt services of a host connected to a network.
Recommendations
Upgrade Confluence Data Center to a version greater than or equal to 8.5.25.
Upgrade Confluence Data Center to a version greater than or equal to 9.2.7.
Upgrade Confluence Data Center to a version greater than or equal to 10.0.2.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Confluence