Github · Atom Electron · CVE-2016-1202
**Name of the Vulnerable Software and Affected Versions**
Atom Electron versions prior to 0.33.5
**Description**
The issue allows local users to gain privileges via a Trojan horse Node.js module in a parent directory of a directory named on a require line, due to an untrusted search path vulnerability.
**Recommendations**
For versions prior to 0.33.5, update to version 0.33.5 or later to resolve the issue.