electron/fuses

Releases16

Frequency3 months 3 weeks

Last Release 3 months ago

Stars54

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-49314 ↗	Nov 28, 2023Tuesday, 28 November 2023, 15:15	7.8 HIGH	—
Asana Desktop 2.1.0 on macOS allows code injection because of specific Electron Fuses. There is inadequate protection against code injection through settings such as RunAsNode and EnableNodeCliInspectArguments, and thus r3ggi/electroniz3r can be used to perform an attack.