Remote Code Execution Vulnerability in Atlassian Companion App for MacOS

CVE-2023-22524 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Certain versions of the Atlassian Companion App for MacOS were affected by a remote code execution vulnerability. An attacker could utilize WebSockets to bypass Atlassian Companion’s blocklist and MacOS Gatekeeper to allow execution of code.

Learn more about our Cis Benchmark Audit For Apple Macos.