CVE-2019-12164

EUVD-2019-3813
ubuntu-server.js in Status React Native Desktop before v0.57.8_mobile_ui allows Remote Code Execution.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 85%
Affected Products (NVD)
VendorProductVersion
statusreact_native_desktop
𝑥
< 0.57.8_mobile_ui
𝑥
= Vulnerable software versions
References
https://github.com/status-im/react-native-desktop/compare/e77167f...7477eef
https://github.com/status-im/react-native-desktop/pull/475
https://github.com/status-im/react-native-desktop/pull/475/commits/f6945f1e4b157c69e414cd94fe5cde1876aabcc1
https://github.com/status-im/react-native-desktop/compare/e77167f...7477eef
https://github.com/status-im/react-native-desktop/pull/475
https://github.com/status-im/react-native-desktop/pull/475/commits/f6945f1e4b157c69e414cd94fe5cde1876aabcc1