CVE-2026-54672

Source
https://cve.org/CVERecord?id=CVE-2026-54672
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-54672.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-54672
Aliases
  • GHSA-7g7r-gx96-252g
Downstream
Related
Published
2026-06-30T22:15:03.264Z
Modified
2026-07-09T10:14:36.584734015Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
electron-updater: Uncontrolled search path elements within `AppImage` built by `app-builder-lib`
Details

electron-updater allows for automatic updates for Electron apps. Prior to 26.15.0, AppImage targets built by app-builder-lib could use an empty path component when setting the LDLIBRARYPATH environment variable at runtime. This causes the current working directory to be added to the dynamic linker search path, which may allow an attacker to execute arbitrary code by placing a malicious shared library in the directory from which the AppImage is launched. This issue has been fixed in version 26.15.0.

Database specific
{
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-427"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/54xxx/CVE-2026-54672.json"
}
References

Affected packages

Git / github.com/electron-userland/electron-builder

Affected ranges

Type
GIT
Repo
https://github.com/electron-userland/electron-builder
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": [
        "AFFECTED_FIELD",
        "REFERENCES"
    ],
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "26.15.0"
        }
    ]
}

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-54672.json"