CVE-2023-42222

HIGH

WebCatalog < 49.0 - Arbitrary Protocol Execution via shell.openExternal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-42222. PoCs published by itssixtyn3in.

AI-analyzed exploit summary The repository provides a technical summary of CVE-2023-42222, detailing how WebCatalog's improper use of Electron's shell.openExternal function allows arbitrary protocol execution, potentially leading to SMB-based attacks. It includes a PoC overview and vulnerability scan output but lacks functional exploit code.

Description

WebCatalog before 49.0 is vulnerable to Incorrect Access Control. WebCatalog calls the Electron shell.openExternal function without verifying that the URL is for an http or https resource, in some circumstances.

Exploits (1)

nomisec WRITEUP 3 stars
by itssixtyn3in · poc
https://github.com/itssixtyn3in/CVE-2023-42222

The repository provides a technical summary of CVE-2023-42222, detailing how WebCatalog's improper use of Electron's shell.openExternal function allows arbitrary protocol execution, potentially leading to SMB-based attacks. It includes a PoC overview and vulnerability scan output but lacks functional exploit code.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: WebCatalog before 48.4.0
No auth needed
Prerequisites: Victim interaction with a crafted URL · Syncing a page with arbitrary URLs
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 8.8
EPSS 0.0142
EPSS Percentile 69.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

Status published
Products (1)
webcatalog/webcatalog < 49.0
Published Sep 28, 2023
Tracked Since Feb 18, 2026