CVE-2024-23740

CRITICAL

Kap for macOS <=3.6.0 - Remote Code Execution via RunAsNode Settings

Title source: manual

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-23740. PoCs published by giovannipajeu1.

AI-analyzed exploit summary The repository lacks actual exploit code and instead references an external tool (electroniz3r) for vulnerability detection. It includes vague claims about achieving RCE but provides no technical details or functional PoC code.

Description

An issue in Kap for macOS version 3.6.0 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

Exploits (1)

nomisec SUSPICIOUS

by giovannipajeu1 · poc

https://github.com/giovannipajeu1/CVE-2024-23740

View Code ZIP pw:eip

The repository lacks actual exploit code and instead references an external tool (electroniz3r) for vulnerability detection. It includes vague claims about achieving RCE but provides no technical details or functional PoC code.

Classification

Suspicious 90%

Attack Type

Rce

Complexity

Theoretical

Reliability

Theoretical

Target: Kap through 3.6.0 on macOS

No auth needed

Prerequisites: Target application must be vulnerable to RunAsNode and enableNodeClilnspectArguments misconfiguration

MITRE ATT&CK

T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Core References

Various Sources

https://www.electronjs.org/blog/statement-run-as-node-cves

Third Party Advisory

https://github.com/V3x0r/CVE-2024-23740

Scores

CVSS v3 9.8

EPSS 0.0146

EPSS Percentile 70.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

Status published

Products (1)

getkap/kap < 3.6.0

Published Jan 28, 2024

Tracked Since Feb 18, 2026