GHSA-7fv9-m79r-j9x8
Suggest an improvement- Source
- https://github.com/advisories/GHSA-7fv9-m79r-j9x8
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-7fv9-m79r-j9x8/GHSA-7fv9-m79r-j9x8.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-7fv9-m79r-j9x8
- Aliases
-
- CVE-2017-12581
- Published
- 2022-05-17T02:14:12Z
- Modified
- 2023-11-08T03:58:52.151779Z
- Severity
-
- 8.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- Electron vulnerable to remote command execution
- Details
-
Electron before 1.6.8 allows remote command execution because of a
nodeIntegrationbypass vulnerability. This also affects all applications that bundle Electron code equivalent to 1.6.8 or earlier. Bypassing the Same Origin Policy (SOP) is a precondition; however, recent Electron versions do not have strict SOP enforcement. Combining an SOP bypass with a privileged URL internally used by Electron, it was possible to execute native Node.js primitives in order to run OS commands on the user's host. Specifically, achrome-devtools://devtools/bundled/inspector.htmlwindow could be used to eval a Node.jschild_process.execFileAPI call. - Database specific
{ "nvd_published_at": "2017-08-06T02:29:00Z", "cwe_ids": [ "CWE-78" ], "github_reviewed": true, "github_reviewed_at": "2023-10-19T18:37:38Z", "severity": "HIGH" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2017-12581
- https://github.com/electron/electron/commit/05b6d91bf4c1e0ee65eeef70cd5d1bd1df125644
- https://blog.doyensec.com/2017/08/03/electron-framework-security.html
- https://doyensec.com/resources/us-17-Carettoni-Electronegativity-A-Study-Of-Electron-Security.pdf
- https://github.com/electron/electron
Affected packages
npm / electron
Package
- Name
- electron
- View open source insights on deps.dev
- Purl
- pkg:npm/electron