Primary

Context

Atlassian Confluence Data Center Denial-of-Service Vulnerability

Vulnerability

Patched

A high-severity denial-of-service vulnerability has been identified in Confluence Data Center, introduced in version 2.0. This vulnerability allows an attacker to disrupt services, making resources unavailable to users by temporarily or indefinitely causing a host's services to fail.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing resources to become unavailable for their intended users and disrupting services on the affected host.

Remediation

Atlassian recommends upgrading to the latest version of Confluence Data Center. If that's not possible, users can upgrade to one of the following supported fixed versions: 8.5.25, 9.2.7, or 10.0.2.

Added: Oct 21, 2025, 4:21 PM

Updated: Oct 21, 2025, 7:56 PM

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Atlassian Confluence Data Center Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Atlassian Confluence Data Center

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating