CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-25249

An issue in He3 App for macOS version 2.0.17, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 82.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/intbjw
https://github.com/intbjw/CVE-2024-25249
https://www.electronjs.org/blog/statement-run-as-node-cves
https://github.com/intbjw
https://github.com/intbjw/CVE-2024-25249
https://www.electronjs.org/blog/statement-run-as-node-cves

Products affected by CVE-2024-25249

He3app » He3 App » Version: 2.0.17

cpe:2.3:a:he3app:he3_app:2.0.17

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-25249

Products

Pricing

Contact Us