Unrated severityNVD Advisory· Published Aug 5, 2025· Updated Aug 5, 2025

Electron Capture is Vulnerable to TCC Bypass via Misconfigured Node Fuses (macOS)

CVE-2025-54871

Description

Electron Capture facilitates video playback for screen-sharing and capture. In versions 2.19.1 and below, the elecap app on macOS allows local unprivileged users to bypass macOS TCC privacy protections by enabling ELECTRON_RUN_AS_NODE. This environment variable allows arbitrary Node.js code to be executed via the -e flag, which runs inside the main Electron context, inheriting any previously granted TCC entitlements (such as access to Documents, Downloads, etc.). This issue is fixed in version 2.20.0.

Affected products

Steveseguin/Electroncapturev5
Range: < 2.20.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/steveseguin/electroncapture/commit/3837f54e75911bb99fa45cfa138a5e401d16f531mitrex_refsource_MISC
github.com/steveseguin/electroncapture/releases/tag/2.20.0mitrex_refsource_MISC
github.com/steveseguin/electroncapture/security/advisories/GHSA-8849-p3j4-jq4hmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000