Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-36077

Опубликовано: 08 нояб. 2022
Источник: redhat
CVSS3: 5.4

Описание

The Electron framework enables writing cross-platform desktop applications using JavaScript, HTML and CSS. In versions prior to 21.0.0-beta.1, 20.0.1, 19.0.11, and 18.3.7, Electron is vulnerable to Exposure of Sensitive Information. When following a redirect, Electron delays a check for redirecting to file:// URLs from other schemes. The contents of the file is not available to the renderer following the redirect, but if the redirect target is a SMB URL such as file://some.website.com/, then in some cases, Windows will connect to that server and attempt NTLM authentication, which can include sending hashed credentials.This issue has been patched in versions: 21.0.0-beta.1, 20.0.1, 19.0.11, and 18.3.7. Users are recommended to upgrade to the latest stable version of Electron. If upgrading isn't possible, this issue can be addressed without upgrading by preventing redirects to file:// URLs in the WebContents.on('will-redirect') event, for all WebContents as a workaround.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat A-MQ OnlineElectronNot affected
Red Hat Application Interconnect 1.0skupper-routerNot affected
Red Hat build of Apicurio Registry 2ElectronNot affected
Red Hat Data Grid 8ElectronNot affected
Red Hat Decision Manager 7ElectronOut of support scope
Red Hat Fuse 7ElectronNot affected
Red Hat Integration Camel K 1ElectronNot affected
Red Hat Integration Service RegistryElectronNot affected
Red Hat JBoss Data Grid 7ElectronOut of support scope
Red Hat JBoss Enterprise Application Platform 6ElectronOut of support scope

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-200
https://bugzilla.redhat.com/show_bug.cgi?id=2141029Electron: Redirection error and misuse of hashed credentials

5.4 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2022-36077

CVSS3: 7.2
nvd
около 3 лет назад

The Electron framework enables writing cross-platform desktop applications using JavaScript, HTML and CSS. In versions prior to 21.0.0-beta.1, 20.0.1, 19.0.11, and 18.3.7, Electron is vulnerable to Exposure of Sensitive Information. When following a redirect, Electron delays a check for redirecting to file:// URLs from other schemes. The contents of the file is not available to the renderer following the redirect, but if the redirect target is a SMB URL such as `file://some.website.com/`, then in some cases, Windows will connect to that server and attempt NTLM authentication, which can include sending hashed credentials.This issue has been patched in versions: 21.0.0-beta.1, 20.0.1, 19.0.11, and 18.3.7. Users are recommended to upgrade to the latest stable version of Electron. If upgrading isn't possible, this issue can be addressed without upgrading by preventing redirects to file:// URLs in the `WebContents.on('will-redirect')` event, for all WebContents as a workaround.

debian логотип

CVE-2022-36077

CVSS3: 7.2
debian
около 3 лет назад

The Electron framework enables writing cross-platform desktop applicat ...

github логотип

GHSA-p2jh-44qj-pf2v

CVSS3: 5.4
github
около 3 лет назад

Exfiltration of hashed SMB credentials on Windows via file:// redirect

5.4 Medium

CVSS3