Skip to main content

Companion

4 CVEs product

Monthly

CVE-2024-22129 HIGH This Week

SAP Companion - version <3.1.38, has a URL with parameter that could be vulnerable to XSS attack. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS SAP Companion
NVD
CVSS 3.1
7.6
EPSS
0.3%
CVE-2023-22524 CRITICAL Act Now

Certain versions of the Atlassian Companion App for MacOS were affected by a remote code execution vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Apple Atlassian Companion
NVD
CVSS 3.1
9.8
EPSS
24.7%
CVE-2020-4020 HIGH This Week

The file downloading functionality in the Atlassian Companion App before version 1.0.0 allows remote attackers, who control a Confluence Server instance that the Companion App is connected to,. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Atlassian Information Disclosure Companion
NVD
CVSS 3.1
7.2
EPSS
1.7%
CVE-2020-4019 HIGH This Week

The file editing functionality in the Atlassian Companion App before version 1.0.0 allows local attackers to have the app run a different executable in place of the app's cmd.exe via a untrusted. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Atlassian Information Disclosure Companion
NVD
CVSS 3.1
7.8
EPSS
0.4%
EPSS 0% CVSS 7.6
HIGH This Week

SAP Companion - version <3.1.38, has a URL with parameter that could be vulnerable to XSS attack. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS SAP Companion
NVD
EPSS 25% CVSS 9.8
CRITICAL Act Now

Certain versions of the Atlassian Companion App for MacOS were affected by a remote code execution vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Apple Atlassian +1
NVD
EPSS 2% CVSS 7.2
HIGH This Week

The file downloading functionality in the Atlassian Companion App before version 1.0.0 allows remote attackers, who control a Confluence Server instance that the Companion App is connected to,. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Atlassian Information Disclosure Companion
NVD
EPSS 0% CVSS 7.8
HIGH This Week

The file editing functionality in the Atlassian Companion App before version 1.0.0 allows local attackers to have the app run a different executable in place of the app's cmd.exe via a untrusted. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Atlassian Information Disclosure Companion
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy