Design/Logic Flaw

2024-01-2803:15:00

PRIOn knowledge base

www.prio-n.com

hyper

macos

design flaw

logic flaw

remote attack

arbitrary code execution

nvd

8.2 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.3%

JSON

An issue in Hyper on macOS version 3.4.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

CPENameOperatorVersion
hyperle3.4.1

CPE	Name	Operator	Version
	hyper	le	3.4.1

References

github.com/V3x0r/CVE-2024-23741

www.electronjs.org/blog/statement-run-as-node-cves