Lucene search
Veracode Vulnerability DatabaseVERACODE:5750HistoryJan 26, 2018 - 2:02 a.m.
Remote Code Execution (RCE)
2018-01-2602:02:14
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.969 High
EPSS
Percentile
99.7%
Electron is vulnerable to remote code execution (RCE) attacks. A malicious user can pass a URL to the application that when clicked on executes arbitrary code. This only affects Windows systems.
Related
threatpost
threatpost
cvelist
cvelist
CVE-2018-1000006
2018-01-24 23:00:00
CVE-2018-1000118
2022-10-03 16:21:59
thn
thn
Critical Flaw Hits Popular Windows Apps Built With Electron JS Framework
2018-01-24 01:26:00
zdi
zdi
nodejs
nodejs
Remote Code Execution
2018-01-23 18:40:39
prion
prion
Design/Logic Flaw
2018-01-24 23:29:00
Command injection
2018-03-07 14:29:00
cve
cve
CVE-2018-1000006
2018-01-24 23:29:00
CVE-2018-1000118
2022-10-03 16:21:59
packetstorm
packetstorm
Exodus Wallet (ElectronJS Framework) Remote Code Execution
2018-01-26 00:00:00
Exodus Wallet (ElectronJS Framework) Remote Code Execution
2018-03-29 00:00:00
checkpoint_advisories
checkpoint_advisories
Electron Protocol Handler Remote Code Execution (CVE-2018-1000006)
2018-01-25 00:00:00
github
github
Remote Code Execution in electron
2018-01-23 03:57:44
Electron protocol handler browser vulnerable to Command Injection
2018-03-26 16:41:20
osv
osv
Remote Code Execution in electron
2018-01-23 03:57:44
CVE-2018-1000118
2018-03-07 14:29:00
Electron protocol handler browser vulnerable to Command Injection
2018-03-26 16:41:20
nvd
nvd
CVE-2018-1000006
2018-01-24 23:29:00
CVE-2018-1000118
2018-03-07 14:29:00
veracode
veracode
Remote Code Execution (RCE)
2018-03-08 09:54:05