1 results (0.001 seconds)
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-50975
https://notcve.org/view.php?id=CVE-2023-50975
21 Feb 2024 — The TD Bank TD Advanced Dashboard client through 3.0.3 for macOS allows arbitrary code execution because of the lack of electron::fuses::IsRunAsNodeEnabled (i.e., ELECTRON_RUN_AS_NODE can be used in production). This makes it easier for a compromised process to access banking information. El cliente TD Bank TD Advanced Dashboard hasta 3.0.3 para macOS permite la ejecución de código arbitrario debido a la falta de electron::fuses::IsRunAsNodeEnabled (es decir, ELECTRON_RUN_AS_NODE se puede usar en producción... • https://gist.github.com/khronokernel/2598c067d0f49b0f0a4c8b01cf129d34 • CWE-276: Incorrect Default Permissions •