Language:
Severity: High
ID: 202700
File Name: confluence_confserver-96134.nasl
Version: 1.1
Type: combined
Agent: windows, macosx, unix
Family: CGI abuses : XSS
Published: 7/19/2024
Updated: 7/19/2024
Configuration: Enable thorough checks
Supported Sensors: Nessus Agent, Nessus
Enable CGI Scanning: true
Risk Factor: Medium
Score: 5.2
Risk Factor: High
Base Score: 8.5
Temporal Score: 6.3
Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:N
CVSS Score Source: CVE-2024-21686
Risk Factor: High
Base Score: 7.3
Temporal Score: 6.4
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
CPE: cpe:/a:atlassian:confluence
Required KB Items: installed_sw/Atlassian Confluence
Exploit Ease: No known exploits are available
Patch Publication Date: 7/10/2024
Vulnerability Publication Date: 7/16/2024
CVE: CVE-2024-21686
IAVA: 2024-A-0412