CVE-2022-29257
Electron's AutoUpdater module fails to validate certain nested components of the bundle
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Electron is a framework for writing cross-platform desktop applications using JavaScript (JS), HTML, and CSS. A vulnerability in versions prior to 18.0.0-beta.6, 17.2.0, 16.2.6, and 15.5.5 allows attackers who have control over a given apps update server / update storage to serve maliciously crafted update packages that pass the code signing validation check but contain malicious code in some components. This kind of attack would require significant privileges in a potential victim's own auto updating infrastructure and the ease of that attack entirely depends on the potential victim's infrastructure security. Electron versions 18.0.0-beta.6, 17.2.0, 16.2.6, and 15.5.5 contain a fix for this issue. There are no known workarounds.
Electron es un marco de trabajo para escribir aplicaciones de escritorio multiplataforma utilizando JavaScript (JS), HTML y CSS. Una vulnerabilidad en versiones anteriores a 18.0.0-beta.6, 17.2.0, 16.2.6 y 15.5.5, permite a atacantes que presentan el control de un determinado servidor de actualización de aplicaciones / almacenamiento de actualizaciones servir paquetes de actualización maliciosamente diseñados que pasan la comprobación de comprobación de la firma de código pero que contienen código malicioso en algunos componentes. Este tipo de ataque requeriría privilegios significativos en la propia infraestructura de actualización automática de una víctima potencial y la facilidad de ese ataque depende totalmente de la seguridad de la infraestructura de la víctima potencial. Electron versiones 18.0.0-beta.6, 17.2.0, 16.2.6 y 15.5.5 contienen una corrección para este problema. No se presentan mitigaciones conocidas
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-04-13 CVE Reserved
- 2022-06-13 CVE Published
- 2024-01-04 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://github.com/electron/electron/security/advisories/GHSA-77xc-hjv8-ww97 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | < 15.5.0 Search vendor "Electronjs" for product "Electron" and version " < 15.5.0" | - |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | >= 16.0.1 < 16.2.0 Search vendor "Electronjs" for product "Electron" and version " >= 16.0.1 < 16.2.0" | - |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | >= 17.0.1 < 17.2.0 Search vendor "Electronjs" for product "Electron" and version " >= 17.0.1 < 17.2.0" | - |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 16.0.0 Search vendor "Electronjs" for product "Electron" and version "16.0.0" | beta1 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 16.0.0 Search vendor "Electronjs" for product "Electron" and version "16.0.0" | beta2 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 16.0.0 Search vendor "Electronjs" for product "Electron" and version "16.0.0" | beta3 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 16.0.0 Search vendor "Electronjs" for product "Electron" and version "16.0.0" | beta4 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 16.0.0 Search vendor "Electronjs" for product "Electron" and version "16.0.0" | beta5 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 16.0.0 Search vendor "Electronjs" for product "Electron" and version "16.0.0" | beta6 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 16.0.0 Search vendor "Electronjs" for product "Electron" and version "16.0.0" | beta7 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 16.0.0 Search vendor "Electronjs" for product "Electron" and version "16.0.0" | beta8 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 16.0.0 Search vendor "Electronjs" for product "Electron" and version "16.0.0" | beta9 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 17.0.0 Search vendor "Electronjs" for product "Electron" and version "17.0.0" | beta1 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 17.0.0 Search vendor "Electronjs" for product "Electron" and version "17.0.0" | beta2 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 17.0.0 Search vendor "Electronjs" for product "Electron" and version "17.0.0" | beta3 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 17.0.0 Search vendor "Electronjs" for product "Electron" and version "17.0.0" | beta4 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 17.0.0 Search vendor "Electronjs" for product "Electron" and version "17.0.0" | beta5 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 17.0.0 Search vendor "Electronjs" for product "Electron" and version "17.0.0" | beta6 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 17.0.0 Search vendor "Electronjs" for product "Electron" and version "17.0.0" | beta7 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 17.0.0 Search vendor "Electronjs" for product "Electron" and version "17.0.0" | beta8 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 17.0.0 Search vendor "Electronjs" for product "Electron" and version "17.0.0" | beta9 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 18.0.0 Search vendor "Electronjs" for product "Electron" and version "18.0.0" | beta1 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 18.0.0 Search vendor "Electronjs" for product "Electron" and version "18.0.0" | beta2 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 18.0.0 Search vendor "Electronjs" for product "Electron" and version "18.0.0" | beta3 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 18.0.0 Search vendor "Electronjs" for product "Electron" and version "18.0.0" | beta4 |
Affected
| ||||||
| Electronjs Search vendor "Electronjs" | Electron Search vendor "Electronjs" for product "Electron" | 18.0.0 Search vendor "Electronjs" for product "Electron" and version "18.0.0" | beta5 |
Affected
| ||||||