CVE-2016-1202

Published: Apr 25, 2016

Modified: Aug 5, 2024

PUBLISHED

Description

Untrusted search path vulnerability in Atom Electron before 0.33.5 allows local users to gain privileges via a Trojan horse Node.js module in a parent directory of a directory named on a require line.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/electron/electron/commit/9a2e2b365d061ec10cd861391fd5b1344af7194d

x_refsource_CONFIRM

JVNDB-2016-000054

third-party-advisory

x_refsource_JVNDB

https://github.com/electron/electron/pull/2976

x_refsource_CONFIRM

JVN#00324715

third-party-advisory

x_refsource_JVN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-1202

Description

Affected Products

References