Low Affected versions of Atlassian Confluence Server and Data Center used versions of Spring Web that were vulnerable to CVE-2020-5421.
The affected versions are before version 6.13.20, from version 6.14.0 before 7.4.8, from version 7.5.0 before 7.10.0, and from version 7.11.0 before 7.11.3.
Affected versions:
- version < 6.13.20
- 6.14.0 ≤ version < 7.4.8
- 7.5.0 ≤ version < 7.10.0
- 7.11.0 ≤ version < 7.11.3
Fixed versions:
- 6.13.20
- 7.4.8
- 7.10.0
- 7.11.3