CVE-2018-6353
HIGHElectrum < 2.9.4 and 3.x < 3.0.5 - Unauthenticated Remote Code Execution via Python Console
Title source: llmDescription
The Python console in Electrum through 2.9.4 and 3.x through 3.0.5 supports arbitrary Python code without considering (1) social-engineering attacks in which a user pastes code that they do not understand and (2) code pasted by a physically proximate attacker at an unattended workstation, which makes it easier for attackers to steal Bitcoin via hook code that runs at a later time when the wallet password has been entered, a different vulnerability than CVE-2018-1000022.
References (2)
Core 2
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/spesmilo/electrum/issues/3678
Third Party Advisory x_refsource_misc
https://github.com/spesmilo/electrum/pull/3700
Scores
CVSS v3
7.8
EPSS
0.0049
EPSS Percentile
38.5%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-78
Status
published
Products (6)
electrum/electrum
3.0.0
electrum/electrum
3.0.1
electrum/electrum
3.0.2
electrum/electrum
3.0.3
electrum/electrum
3.0.5
electrum/electrum
< 2.9.4
Published
Jan 27, 2018
Tracked Since
Feb 18, 2026