updated affected & fixed versions for CVE-2020-29445

2025-08-04 08:44:25 +00:00 · 2021-06-15 16:38:53 -04:00 · 2021-06-15 16:38:53 -04:00 · b448306cae
commit b448306cae
parent 40f90b9524
1 changed files with 10 additions and 2 deletions
--- a/2020/29xxx/CVE-2020-29445.json
+++ b/2020/29xxx/CVE-2020-29445.json
@ -15,6 +15,14 @@
                                "product_name": "Confluence Server",
                                "version": {
                                    "version_data": [
+                                        {
+                                            "version_value": "7.4.8",
+                                            "version_affected": "<"
+                                        },
+                                        {
+                                            "version_value": "7.5.0",
+                                            "version_affected": ">="
+                                        },
                                        {
                                            "version_value": "7.11.0",
                                            "version_affected": "<"
@ -36,7 +44,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Affected versions of Confluence Server before 7.11.0 allow attackers to identify internal hosts and ports via a blind server-side request forgery vulnerability in Team Calendars parameters."
+                "value": "Affected versions of Confluence Server before 7.4.8, and versions from 7.5.0 before 7.11.0 allow attackers to identify internal hosts and ports via a blind server-side request forgery vulnerability in Team Calendars parameters."
            }
        ]
    },
@ -61,4 +69,4 @@
            }
        ]
    }
-}
+}