We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-51387



Description

The GitKraken Desktop 10.8.0 and 11.1.0 is susceptible to code injection due to misconfigured Electron Fuses. Specifically, the following insecure settings were observed: RunAsNode is enabled and EnableNodeCliInspectArguments is not disabled. These configurations allow the application to be executed in Node.js mode, enabling attackers to pass arguments that result in arbitrary code execution.

Reserved 2025-06-16 | Published 2025-08-04 | Updated 2025-08-04 | Assigner mitre

References

github.com/r3ggi/electroniz3r

www.electronjs.org/blog/statement-run-as-node-cves

packetstorm.news/files/id/207677

cve.org (CVE-2025-51387)

nvd.nist.gov (CVE-2025-51387)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-51387

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.