CVE-2024-22891

CRITICAL

nteract 0.28.0 - Remote Code Execution via Markdown Link

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-22891. PoCs published by EQSTLab.

AI-analyzed exploit summary This repository contains a functional PoC for CVE-2024-22891, demonstrating RCE in nteract 0.28.0 via Electron webview exploitation through crafted Markdown links. The exploit leverages the `openExternal` function to execute arbitrary commands (e.g., launching calc.exe).

Description

Nteract v.0.28.0 was discovered to contain a remote code execution (RCE) vulnerability via the Markdown link.

Exploits (1)

nomisec WORKING POC

by EQSTLab · poc

https://github.com/EQSTLab/CVE-2024-22891

View Code ZIP pw:eip

This repository contains a functional PoC for CVE-2024-22891, demonstrating RCE in nteract 0.28.0 via Electron webview exploitation through crafted Markdown links. The exploit leverages the `openExternal` function to execute arbitrary commands (e.g., launching calc.exe).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: nteract 0.28.0

No auth needed

Prerequisites: Victim must interact with a malicious Markdown link · Attacker must host a malicious HTML file

MITRE ATT&CK

T1204 - User Execution T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://github.com/EQSTLab/PoC/tree/main/2024/RCE/CVE-2024-22891

Scores

CVSS v3 9.8

EPSS 0.3943

EPSS Percentile 97.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-601

Status published

Products (2)

npm/nteract 0npm

nteract/nteract 0.28.0

Published Mar 01, 2024

Tracked Since Feb 18, 2026