Security Advisory

CVE-2020-12079

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-23 03:54:07

Last updated 2024-08-04 11:48:58

Assigner mitre

State PUBLISHED

Description

Beaker before 0.8.9 allows a sandbox escape, enabling system access and code execution. This occurs because Electron context isolation is not used, and therefore an attacker can conduct a prototype-pollution attack against the Electron internal messaging API.

← Browse all CVEs View on cve.org ↗