CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2024-35222 – iFrames Bypass Origin Checks for Tauri API Access Control
https://notcve.org/view.php?id=CVE-2024-35222
23 May 2024 — Tauri is a framework for building binaries for all major desktop platforms. Remote origin iFrames in Tauri applications can access the Tauri IPC endpoints without being explicitly allowed in the `dangerousRemoteDomainIpcAccess` in v1 and in the `capabilities` in v2. Valid commands with potentially unwanted consequences ("delete project", "transfer credits", etc.) could be invoked by an attacker that controls the content of an iframe running inside a Tauri app. This vulnerability has been patched in versions... • https://github.com/tauri-apps/tauri/issues/8316 • CWE-284: Improper Access Control •
CVSS: 8.4EPSS: 0%CPEs: 16EXPL: 0CVE-2023-46115 – Updater Private Keys Possibly Leaked via Vite Environment Variables in tauri-cli
https://notcve.org/view.php?id=CVE-2023-46115
19 Oct 2023 — Tauri is a framework for building binaries for all major desktop platforms. This advisory is not describing a vulnerability in the Tauri code base itself but a commonly used misconfiguration which could lead to leaking of the private key and updater key password into bundled Tauri applications using the Vite frontend in a specific configuration. The Tauri documentation used an insecure example configuration in the `Vite guide` to showcase how to use Tauri together with Vite. Copying the following snippet `e... • https://github.com/tauri-apps/tauri/security/advisories/GHSA-2rcp-jvr4-r259 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-522: Insufficiently Protected Credentials •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2023-34460 – Tauri vulnerable to Regression on Filesystem Scope Checks for Dotfiles
https://notcve.org/view.php?id=CVE-2023-34460
23 Jun 2023 — Tauri is a framework for building binaries for all major desktop platforms. The 1.4.0 release includes a regression on the Filesystem scope check for dotfiles on Unix. Previously dotfiles were not implicitly allowed by the glob wildcard scopes (eg. `$HOME/*`), but a regression was introduced when a configuration option for this behavior was implemented. Only Tauri applications using wildcard scopes in the `fs` endpoint are affected. • https://github.com/tauri-apps/tauri/commit/066c09a6ea06f42f550d090715e06beb65cd5564 • CWE-285: Improper Authorization •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-31134 – Tauri Open Redirect Vulnerability Possibly Exposes IPC to External Sites
https://notcve.org/view.php?id=CVE-2023-31134
09 May 2023 — Tauri is software for building applications for multi-platform deployment. The Tauri IPC is usually strictly isolated from external websites, but in versions 1.0.0 until 1.0.9, 1.1.0 until 1.1.4, and 1.2.0 until 1.2.5, the isolation can be bypassed by redirecting an existing Tauri window to an external website. This is either possible by an application implementing a feature for users to visit arbitrary websites or due to a bug allowing the open redirect. This allows the external website access to the IPC l... • https://github.com/tauri-apps/tauri/releases/tag/tauri-v1.0.9 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 7.7EPSS: 0%CPEs: 5EXPL: 1CVE-2022-46171 – Tauri vulnerable to path traversal
https://notcve.org/view.php?id=CVE-2022-46171
23 Dec 2022 — Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards `*`, `?`, and `[...]` match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Scopes without the wildcards are not affected. As `**` allows for sub directories the behavior there is also as expected. • https://github.com/tauri-apps/tauri/commit/72389b00d7b495ffd7750eb1e75a3b8537d07cf3 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-41874 – Tauri Filesystem Scope can be Partially Bypassed
https://notcve.org/view.php?id=CVE-2022-41874
10 Nov 2022 — Tauri is a framework for building binaries for all major desktop platforms. In versions prior to 1.0.7 and 1.1.2, Tauri is vulnerable to an Incorrectly-Resolved Name. Due to incorrect escaping of special characters in paths selected via the file dialog and drag and drop functionality, it is possible to partially bypass the `fs` scope definition. It is not possible to traverse into arbitrary paths, as the issue is limited to neighboring files and sub folders of already allowed paths. The impact differs on Wi... • https://github.com/tauri-apps/tauri/security/advisories/GHSA-q9wv-22m9-vhqh • CWE-668: Exposure of Resource to Wrong Sphere CWE-706: Use of Incorrectly-Resolved Name or Reference •
CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 1CVE-2022-39215 – The readDir Endpoint Scope can be Bypassed With Symbolic Links in Tauri
https://notcve.org/view.php?id=CVE-2022-39215
15 Sep 2022 — Tauri is a framework for building binaries for all major desktop platforms. Due to missing canonicalization when `readDir` is called recursively, it was possible to display directory listings outside of the defined `fs` scope. This required a crafted symbolic link or junction folder inside an allowed path of the `fs` scope. No arbitrary file content could be leaked. The issue has been resolved in version 1.0.6 and the implementation now properly checks if the requested (sub) directory is a symbolic link out... • https://github.com/tauri-apps/tauri/issues/4882 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-59: Improper Link Resolution Before File Access ('Link Following') •