CVE-2021-28134

Published: Mar 11, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

Clipper before 1.0.5 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal API.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/AkashRajpurohit/clipper/issues/13

x_refsource_MISC

https://github.com/AkashRajpurohit/clipper/releases/tag/v1.0.5

x_refsource_MISC

https://github.com/AkashRajpurohit/clipper/pull/14

x_refsource_MISC

https://github.com/AkashRajpurohit/clipper/pull/14/commits/28f1492a12234cf1e6af85c78bf22ee2f5090d19

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-28134

Description

Affected Products

References