Filtered by vendor Twinkletray Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-28119 1 Twinkletray 1 Twinkle Tray 2024-11-21 9.8 Critical
Twinkle Tray (aka twinkle-tray) through 1.13.3 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal API.