Lucene search
Veracode Vulnerability DatabaseVERACODE:5901HistoryMar 08, 2018 - 9:54 a.m.
Remote Code Execution (RCE)
2018-03-0809:54:05
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
EPSS
0.97
Percentile
99.8%
Electron is vulnerable to remote code execution (RCE) attacks. A malicious user can pass a Electron Protocol Handler to the application that when clicked on executes arbitrary code. This vulnerability is due to an incomplete fix in CVE-2018-1000006.
Related
osv
osv
CVE-2018-1000118
2018-03-07 14:29:00
Electron protocol handler browser vulnerable to Command Injection
2018-03-26 16:41:20
Remote Code Execution in electron
2018-01-23 03:57:44
cvelist
cvelist
CVE-2018-1000118
2018-03-07 14:00:00
CVE-2018-1000006
2018-01-24 23:00:00
cve
cve
CVE-2018-1000118
2018-03-07 14:29:00
CVE-2018-1000006
2018-01-24 23:29:00
github
github
Electron protocol handler browser vulnerable to Command Injection
2018-03-26 16:41:20
Remote Code Execution in electron
2018-01-23 03:57:44
prion
prion
Command injection
2018-03-07 14:29:00
Design/Logic Flaw
2018-01-24 23:29:00
nvd
nvd
CVE-2018-1000118
2018-03-07 14:29:00
CVE-2018-1000006
2018-01-24 23:29:00
nodejs
nodejs
Remote Code Execution
2018-01-23 18:40:39
zdi
zdi
thn
thn
Critical Flaw Hits Popular Windows Apps Built With Electron JS Framework
2018-01-24 01:26:00
threatpost
threatpost
veracode
veracode
Remote Code Execution (RCE)
2018-01-26 02:02:14
exploitdb
exploitdb
Exodus Wallet (ElectronJS Framework) - Remote Code Execution
2018-01-25 00:00:00
Exodus Wallet (ElectronJS Framework) - Remote Code Execution (Metasploit)
2018-03-29 00:00:00
packetstorm
packetstorm
Exodus Wallet (ElectronJS Framework) Remote Code Execution
2018-03-29 00:00:00
Exodus Wallet (ElectronJS Framework) Remote Code Execution
2018-01-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Electron Protocol Handler Remote Code Execution (CVE-2018-1000006)
2018-01-25 00:00:00
metasploit
metasploit
Exodus Wallet (ElectronJS Framework) remote Code Execution
2018-02-26 21:31:13