CVE-2024-25249 Information

Description

An issue in He3 App for macOS version 2.0.17 allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

Reference

https://github.com/intbjw https://www.electronjs.org/blog/statement-run-as-node-cves https://github.com/intbjw/CVE-2024-25249