23 matches found
EUVD-2020-25284
Malware in sbrugna...
EUVD-2019-6093
Malware in sbrugna...
EUVD-2020-25285
Malware in sbrugna...
CVE-2023-22524: RCE Vulnerability in Atlassian Companion for macOS
TL;DR This blog unveils a remote code execution vulnerability, identified as CVE-2023-22524, in Atlassian Companion for macOS, which has recently been patched. This critical vulnerability stemmed from an ability to bypass both the apps blocklist and macOS Gatekeeper, potentially allowing the...
Exploit for CVE-2023-22524
Atlassian Companion RCE Vulnerability Proof of Concept CVE-20...
Exploit for CVE-2023-22524
Atlassian Companion RCE Vulnerability Proof of Concept CVE-20...
Atlassian Releases Critical Software Fixes to Prevent Remote Code Execution
Atlassian has released software fixes to address four critical flaws in its software that, if successfully exploited, could result in remote code execution. The list of vulnerabilities is below - CVE-2022-1471 CVSS score: 9.8 - Deserialization vulnerability in SnakeYAML library that can lead to...
CVE-2023-22524
Certain versions of the Atlassian Companion App for MacOS were affected by a remote code execution vulnerability. An attacker could utilize WebSockets to bypass Atlassian Companion’s blocklist and MacOS Gatekeeper to allow execution of code...
CVE-2023-22524
Certain versions of the Atlassian Companion App for MacOS were affected by a remote code execution vulnerability. An attacker could utilize WebSockets to bypass Atlassian Companion’s blocklist and MacOS Gatekeeper to allow execution of code...
Atlassian Companion app security breach
The Atlassian Companion app is an application from Atlassian Australia that enables users to edit Confluence files in their preferred desktop application. A security vulnerability exists in versions of the Atlassian Companion app prior to 2.0.0 that stems from the presence of a remote code...
PT-2023-7590 · Atlassian · Companion App
Name of the Vulnerable Software and Affected Versions: Atlassian Companion App for MacOS affected versions not specified Description: The issue is related to a remote code execution vulnerability in the Atlassian Companion App for MacOS. An attacker could utilize WebSockets to bypass Atlassian...
Atlassian Companion < 1.0.0 Protection Mechanism Failure
The file downloading functionality in the Atlassian Companion App before version 1.0.0 allows remote attackers, who control a Confluence Server instance that the Companion App is connected to, execute arbitrary .exe files via a Protection Mechanism Failure. C Tenable Network Security, Inc...
Unspecified vulnerability in Atlassian Companion app
The Atlassian Companion app is an application from Atlassian Australia that enables users to edit Confluence files in their preferred desktop application. A security vulnerability exists in the file download feature in versions of the Atlassian Companion app prior to 1.0.0, which stems from a...
Atlassian Companion app code issue vulnerability
The Atlassian Companion app is an application from Atlassian Australia that enables users to edit Confluence files in their preferred desktop application. A code issue vulnerability exists in the file editing functionality in versions of the Atlassian Companion app prior to 1.0.0. A local attacke...
CVE-2020-4019
The file editing functionality in the Atlassian Companion App before version 1.0.0 allows local attackers to have the app run a different executable in place of the app's cmd.exe via a untrusted search path vulnerability...
CVE-2020-4020
The file downloading functionality in the Atlassian Companion App before version 1.0.0 allows remote attackers, who control a Confluence Server instance that the Companion App is connected to, execute arbitrary .exe files via a Protection Mechanism Failure...
Untrusted Search Path in Content - Edit Files / Companion - CVE-2020-4019
The file editing functionality in the Atlassian Companion App before version 1.0.0 allows local attackers to have the app run a different executable in place of the app's cmd.exe via a untrusted search path vulnerability. h5. Acknowledgements Credit for finding this vulnerability goes to Johannes...
Protection Mechanism Failure in file downloading in Companion - CVE-2020-4020
The file downloading functionality in the Atlassian Companion App before version 1.0.0 allows remote attackers, who control a Confluence Server instance that the Companion App is connected to, execute arbitrary .exe files via a Protection Mechanism Failure. h5. Acknowledgements Credit for finding...
CVE-2019-15006
There was a man-in-the-middle MITM vulnerability present in the Confluence Previews plugin in Confluence Server and Confluence Data Center. This plugin was used to facilitate communication with the Atlassian Companion application. The Confluence Previews plugin in Confluence Server and Confluence...
CVE-2019-15006
There was a man-in-the-middle MITM vulnerability present in the Confluence Previews plugin in Confluence Server and Confluence Data Center. This plugin was used to facilitate communication with the Atlassian Companion application. The Confluence Previews plugin in Confluence Server and Confluence...