CVE-2020-4019

The file editing functionality in the Atlassian Companion App before version 1.0.0 allows local attackers to have the app run a different executable in place of the app's cmd.exe via a untrusted search path vulnerability.
References
Configurations

Configuration 1

cpe:2.3:a:atlassian:companion:*:*:*:*:*:*:*:*

Information

Published : 2020-06-01 07:15

Updated : 2020-06-05 02:06


NVD link : CVE-2020-4019

Mitre link : CVE-2020-4019

Products Affected
No products.
CWE
CWE-426

Untrusted Search Path