Lucene search

FreeBSDD1B20E09-DBDF-432B-83C7-89F0AF76324A

HistoryJan 04, 2024 - 12:00 a.m.

electron27 -- multiple vulnerabilities

2024-01-0400:00:00

vuxml.freebsd.org

electron

update

multiple

vulnerabilities

security

backported

fix

cve-2023-6706

cve-2023-6705

cve-2023-6703

cve-2023-6702

cve-2023-6704

unix

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

Low

EPSS

0.001

Percentile

41.8%

JSON

Electron developers report:

This update fixes the following vulnerabilities:

Security: backported fix for CVE-2023-6706.
Security: backported fix for CVE-2023-6705.
Security: backported fix for CVE-2023-6703.
Security: backported fix for CVE-2023-6702.
Security: backported fix for CVE-2023-6704.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchelectron27< 27.2.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	electron27	< 27.2.1	UNKNOWN

References

github.com/advisories/GHSA-587x-fmc5-99p9

github.com/advisories/GHSA-7hjc-c62g-4w73

github.com/advisories/GHSA-9v72-359m-2vx4

github.com/advisories/GHSA-h27f-fw5q-c2gh

github.com/advisories/GHSA-jqrg-rvpw-5fw5

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

Low

EPSS

0.001

Percentile

41.8%

JSON

Related for D1B20E09-DBDF-432B-83C7-89F0AF76324A