Companion Security Vulnerabilities and Issues — Companion CVE List

Lucene search

AtlassianCompanion

3 matches found

CVE•added 2023/12/06 5:15 a.m.•58 views

CVE-2023-22524

Certain versions of the Atlassian Companion App for MacOS were affected by a remote code execution vulnerability. An attacker could utilize WebSockets to bypass Atlassian Companion’s blocklist and MacOS Gatekeeper to allow execution of code.

9.8CVSS9.5AI score0.38925EPSS

CVE•added 2020/06/01 7:15 a.m.•46 views

CVE-2020-4020

The file downloading functionality in the Atlassian Companion App before version 1.0.0 allows remote attackers, who control a Confluence Server instance that the Companion App is connected to, execute arbitrary .exe files via a Protection Mechanism Failure.

7.2CVSS7.1AI score0.0072EPSS

CVE•added 2020/06/01 7:15 a.m.•40 views

CVE-2020-4019

The file editing functionality in the Atlassian Companion App before version 1.0.0 allows local attackers to have the app run a different executable in place of the app's cmd.exe via a untrusted search path vulnerability.

7.8CVSS7.4AI score0.00063EPSS