Published: 06/12/2023 Updated: 11/12/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

Certain versions of the Atlassian Companion App for MacOS were affected by a remote code execution vulnerability. An attacker could utilize WebSockets to bypass Atlassian Companion’s blocklist and MacOS Gatekeeper to allow execution of code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
atlassian companion

Atlassian Companion RCE Vulnerability Proof of Concept (CVE-2023-22524) Overview This repository contains a proof of concept (PoC) for the recently discovered remote code execution vulnerability in Atlassian Companion for macOS, identified as CVE-2023-22524 This critical issue allows attackers to bypass the app's blocklist and macOS Gatekeeper, leading to potential execut

Atlassian Companion RCE Vulnerability Proof of Concept

Atlassian Companion RCE Vulnerability Proof of Concept (CVE-2023-22524) Overview This repository contains a proof of concept (PoC) for the recently discovered remote code execution vulnerability in Atlassian Companion for macOS, identified as CVE-2023-22524 This critical issue allows attackers to bypass the app's blocklist and macOS Gatekeeper, leading to potential execut

NVD-CWE-noinfo https://confluence.atlassian.com/security/cve-2023-22524-rce-vulnerability-in-atlassian-companion-app-for-macos-1319249492.html https://jira.atlassian.com/browse/CONFSERVER-93518 https://nvd.nist.gov https://github.com/imperva/CVE-2023-22524 https://github.com/ron-imperva/CVE-2023-22524

CVE-2023-22524

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect