Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-7M48-WC93-9G85
HistoryDec 01, 2023 - 9:32 p.m.

ASAR Integrity bypass via filetype confusion in electron

2023-12-0121:32:06
CWE-345
GitHub Advisory Database
github.com
3
asar
integrity
filetype confusion
electron
electronjs
macos
security
patch
version
advisory

CVSS3

7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.1

Confidence

High

EPSS

0.001

Percentile

19.7%

JSON

Impact

This only impacts apps that have the embeddedAsarIntegrityValidation and onlyLoadAppFromAsar fuses enabled. Apps without these fuses enabled are not impacted. This issue is specific to macOS as these fuses are only currently supported on macOS.

Specifically this issue can only be exploited if your app is launched from a filesystem the attacker has write access too. i.e. the ability to edit files inside the resources folder in your app installation on Windows which these fuses are supposed to protect against.

Workarounds

There are no app side workarounds, you must update to a patched version of Electron.

Fixed Versions

  • 27.0.0-alpha.7
  • 26.2.1
  • 25.8.1
  • 24.8.3
  • 22.3.24

For more information

If you have any questions or comments about this advisory, email us at [email protected]

Affected configurations

Vulners
Node
electronelectronRange23.0.0-alpha.123.3.13
OR
electronelectronRange27.0.0-alpha.127.0.0-alpha.7
OR
electronelectronRange26.0.0-alpha.126.2.1
OR
electronelectronRange25.0.0-alpha.125.8.1
OR
electronelectronRange24.0.0-alpha.124.8.3
OR
electronelectronRange<22.3.24
VendorProductVersionCPE
electronelectron*cpe:2.3:a:electron:electron:*:*:*:*:*:*:*:*

Related

osv 2
hackerone 1
prion 1
veracode 1
nvd 1
cve 1
cvelist 1
osv
osv
CVE-2023-44402
2023-12-01 22:15:09
ASAR Integrity bypass via filetype confusion in electron
2023-12-01 21:32:06
hackerone
hackerone
Internet Bug Bounty: ASAR Integrity bypass via filetype confusion
2023-12-04 06:02:02
prion
prion
Cross site scripting
2023-12-01 22:15:00
veracode
veracode
Insufficient Verification Of Data Authenticity
2023-12-04 09:15:57
nvd
nvd
CVE-2023-44402
2023-12-01 22:15:09
cve
cve
CVE-2023-44402
2023-12-01 22:15:09
cvelist
cvelist
CVE-2023-44402 ASAR Integrity bypass via filetype confusion in electron
2023-12-01 21:45:18

CVSS3

7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.1

Confidence

High

EPSS

0.001

Percentile

19.7%

JSON
Related for GHSA-7M48-WC93-9G85
osv2hackerone1prion1veracode1nvd1cve1cvelist1