CVE-2020-4075 Information
Description
In Electron before versions 7.2.4 8.2.4 and 9.0.0-beta21 arbitrary local file read is possible by defining unsafe window options on a child window opened via window.open. As a workaround ensure you are calling event.preventDefault() on all new-window events where the url or options is not something you expect. This is fixed in versions 9.0.0-beta.21 8.2.4 and 7.2.4.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Reference
https://github.com/electron/electron/security/advisories/GHSA-f9mq-jph6-9mhm
https://www.electronjs.org/releases/stable?page=3release-notes-for-v824
In
Electron
before
versions
7.2.4
8.2.4
and
9.0.0-beta21
arbitrary
local
file
read
is
possible
by
defining
unsafe
window
options
on
a
child
window
opened
via
window.open.
As
a
workaround
ensure
you
are
calling
event.preventDefault()
on
all
new-window
events
where
the
url
or
options
is
not
something
you
expect.
This
is
fixed
in
versions
9.0.0-beta.21
8.2.4
and
7.2.4.
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
NONE
Base Score
NONE
Base Severity
7.5
Share on: