CVE-2021-28134
N/A
N/A
Summary
Clipper before 1.0.5 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal API.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/AkashRajpurohit/clipper/issues/13
- https://github.com/AkashRajpurohit/clipper/releases/tag/v1.0.5
- https://github.com/AkashRajpurohit/clipper/pull/14
- https://github.com/AkashRajpurohit/clipper/pull/14/commits/28f1492a12234cf1e6af85c78bf22ee2f5090d19
References
- https://github.com/AkashRajpurohit/clipper/issues/13
- https://github.com/AkashRajpurohit/clipper/releases/tag/v1.0.5
- https://github.com/AkashRajpurohit/clipper/pull/14
- https://github.com/AkashRajpurohit/clipper/pull/14/commits/28f1492a12234cf1e6af85c78bf22ee2f5090d19
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.