CVE-2019-3396: Atlassian Confluence Server and Data Center Server-Side
Atlassian Confluence Server and Data Center Server-Side Template Injection Vulnerability. Atlassian Confluence Server and Data Center contain a server-side template injection vulnerability that may allow an attacker to achieve path traversal and remote code execution.
- CISA KEV-listed (remediation due 2022-05-03)
- used in ransomware campaigns
- EPSS 94.5% (100.0% percentile)