The host is installed with Atlassian Confluence Server before 7.4.10 or 7.5.x before 7.12.3 and is prone to a pre-authorization arbitrary file read vulnerability. A flaw is present in the application which fails to handle unspecified vectors. Successful exploitation allows remote attackers to view restricted resources.