CVE-2018-6353

HIGH

Electrum < 2.9.4 and 3.x < 3.0.5 - Unauthenticated Remote Code Execution via Python Console

Title source: llm
STIX 2.1

Description

The Python console in Electrum through 2.9.4 and 3.x through 3.0.5 supports arbitrary Python code without considering (1) social-engineering attacks in which a user pastes code that they do not understand and (2) code pasted by a physically proximate attacker at an unattended workstation, which makes it easier for attackers to steal Bitcoin via hook code that runs at a later time when the wallet password has been entered, a different vulnerability than CVE-2018-1000022.

References (2)

Core 2
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/spesmilo/electrum/issues/3678
Third Party Advisory x_refsource_misc
https://github.com/spesmilo/electrum/pull/3700

Scores

CVSS v3 7.8
EPSS 0.0049
EPSS Percentile 38.5%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-78
Status published
Products (6)
electrum/electrum 3.0.0
electrum/electrum 3.0.1
electrum/electrum 3.0.2
electrum/electrum 3.0.3
electrum/electrum 3.0.5
electrum/electrum < 2.9.4
Published Jan 27, 2018
Tracked Since Feb 18, 2026