QID 996213
Date Published: 2023-12-13
QID 996213: Rust (Rust) Security Update for tauri (GHSA-4wm2-cwcf-wwvp)
The Tauri IPC is usually strictly isolated from external websites but the isolation can be bypassed by redirecting an existing Tauri window to an external website. This is either possible by an application implementing a feature for users to visit arbitrary websites or due to a bug allowing the open redirect1.
Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.
Solution
Refer to Github security advisory GHSA-4wm2-cwcf-wwvp for updates and patch information.
Vendor References
- GHSA-4wm2-cwcf-wwvp -
github.com/advisories/GHSA-4wm2-cwcf-wwvp
CVEs related to QID 996213
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| GHSA-4wm2-cwcf-wwvp | tauri |
|