料金エンタープライズ

CVE-2023-31874

8.8HIGH

Yank Note (YN) 3.52.1 allows execution of arbitrary code when a crafted file is opened, e.g., via nodeRequire('child_process').

公開日: 5/29/2023更新日: 1/14/2025

NVDで表示 MITREで表示

説明

Yank Note (YN) 3.52.1 allows execution of arbitrary code when a crafted file is opened, e.g., via nodeRequire('child_process').

AI分析AIによる分析

影響を受ける製品

yank-noteyank_note

3.52.1

利用可能なエクスプロイト (1)

Yank Note v3.52.1 (Electron) - Arbitrary Code Execution

8bitsec5/23/2023

参照

http://packetstormsecurity.com/files/172535/Yank-Note-3.52.1-Arbitrary-Code-Execution.html
Third Party AdvisoryVDB Entry
http://packetstormsecurity.com/files/172535/Yank-Note-3.52.1-Arbitrary-Code-Execution.html
Third Party AdvisoryVDB Entry