Описание
A security feature bypass issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed for sandbox escape in Electron and escalation of privilege if combined with a remote code execution vulnerability inside the sandboxed renderer process.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.3.4932 (исключая)
cpe:2.3:a:whatsapp:whatsapp_desktop:*:*:*:*:*:*:*:*
EPSS
Процентиль: 77%
0.01044
Низкий
10 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-265
NVD-CWE-noinfo
Связанные уязвимости
github
около 3 лет назад
A security feature bypass issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed for sandbox escape in Electron and escalation of privilege if combined with a remote code execution vulnerability inside the sandboxed renderer process.
EPSS
Процентиль: 77%
0.01044
Низкий
10 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-265
NVD-CWE-noinfo