Vulnerabilities > Atlassian > Companion > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-01 | CVE-2020-4020 | Unspecified vulnerability in Atlassian Companion The file downloading functionality in the Atlassian Companion App before version 1.0.0 allows remote attackers, who control a Confluence Server instance that the Companion App is connected to, execute arbitrary .exe files via a Protection Mechanism Failure. | 7.2 |
| 2020-06-01 | CVE-2020-4019 | Untrusted Search Path vulnerability in Atlassian Companion The file editing functionality in the Atlassian Companion App before version 1.0.0 allows local attackers to have the app run a different executable in place of the app's cmd.exe via a untrusted search path vulnerability. | 7.8 |