CVE-2020-4020 – The file downloading functionality in the Atlassian Companion App before version 1.0.0 all …

Vuln ID: CVE-2020-4020

Published:  2020-06-01  07:15:11Z

Description: The file downloading functionality in the Atlassian Companion App before version 1.0.0 allows remote attackers, who control a Confluence Server instance that the Companion App is connected to, execute arbitrary .exe files via a Protection Mechanism Failure.

Source: NVD.NIST.GOV

 

Tags