Vulnerabilities > Asana > Desktop
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-28 | CVE-2023-49314 | Code Injection vulnerability in Asana Desktop 2.1.0 Asana Desktop 2.1.0 on macOS allows code injection because of specific Electron Fuses. | 7.8 |
| 2022-04-09 | CVE-2022-26877 | Files or Directories Accessible to External Parties vulnerability in Asana Desktop Asana Desktop before 1.6.0 allows remote attackers to exfiltrate local files if they can trick the Asana desktop app into loading a malicious web page. | 4.3 |