logo

Vulnerability details for CVE-2019-3396 

The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 (the fixed version for 6.6.x), from version 6.7.0 before 6.12.3 (the fixed version for 6.12.x), from version 6.13.0 before 6.13.3 (the fixed version for 6.13.x), and from...

CVSS Score (Vector) 10.0 (AV:N/AC:L/Au:N/C:C/I:C/A:C)
ThreatWorx Rating 5 - Urgent
Weakness Types CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Code Execution, Gain Information, Code Injection, Access Bypass, Directory Traversal, Memory Corruption, Memory Overflow
Reported By US-CERT, Security Research, PacketStorm
First Reported Mar 25, 2019 by NVD
Last Updated Feb 10, 2025 by NVD
NVD Status Published CVE-2019-3396
Affected Products 5 affected product(s) reported by NVD, Security Research
Patches No known patches
Remediations No known remediations
Latest Reference NVD
Signup for our Free Tier
ThreatWorx Inc.