Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
atlassianSecurity-metrics-botATLASSIAN:CONFSERVER-59734
HistoryApr 16, 2020 - 9:16 p.m.

Untrusted Search Path in Content - Edit Files / Companion - CVE-2020-4019

2020-04-1621:16:53
security-metrics-bot
jira.atlassian.com
13

0.001 Low

EPSS

Percentile

24.9%

JSON

The file editing functionality in the Atlassian Companion App before version 1.0.0 allows local attackers to have the app run a different executable in place of the app’s cmd.exe via a untrusted search path vulnerability.

h5. Acknowledgements
Credit for finding this vulnerability goes to Johannes Hatting (UFST).

Related

nvd 1
cve 1
prion 1
cvelist 1
atlassian 1
nvd
nvd
CVE-2020-4019
2020-06-01 07:15:11
cve
cve
CVE-2020-4019
2020-06-01 07:15:11
prion
prion
Design/Logic Flaw
2020-06-01 07:15:00
cvelist
cvelist
CVE-2020-4019
2020-04-21 00:00:00
atlassian
atlassian
Untrusted Search Path in Content - Edit Files / Companion - CVE-2020-4019
2020-04-16 21:16:53

0.001 Low

EPSS

Percentile

24.9%

JSON
Related for ATLASSIAN:CONFSERVER-59734
nvd1cve1prion1cvelist1atlassian1