Lucene search

K
freebsdFreeBSD9000591B-483B-45AC-9C87-B3DF3A4198EC
HistoryOct 18, 2023 - 12:00 a.m.

electron{25,26} -- Use after free in Site Isolation

2023-10-1800:00:00
vuxml.freebsd.org
15
electron
use after free
site isolation
security
cve-2023-5218
unix

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

56.5%

Electron developers report:

This update fixes the following vulnerability:

Security: backported fix for CVE-2023-5218.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchelectron25< 25.9.2UNKNOWN
FreeBSDanynoarchelectron26< 26.4.1UNKNOWN

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

56.5%