CVE-2025-55305
- EPSS 0.01%
- Veröffentlicht 04.09.2025 23:05:07
- Zuletzt bearbeitet 05.09.2025 17:47:10
Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. In versions below 35.7.5, 36.0.0-alpha.1 through 36.8.0, 37.0.0-alpha.1 through 37.3.1 and 38.0.0-alpha.1 through 38.0.0-beta.6, ASAR Integrity By...
CVE-2024-46993
- EPSS 0.02%
- Veröffentlicht 01.07.2025 01:55:51
- Zuletzt bearbeitet 03.07.2025 15:14:12
Electron is an open source framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. In versions prior to 28.3.2, 29.3.3, and 30.0.3, the nativeImage.createFromPath() and nativeImage.createFromBuffer() functions call a...
CVE-2024-46992
- EPSS 0.01%
- Veröffentlicht 01.07.2025 01:43:13
- Zuletzt bearbeitet 03.07.2025 15:14:12
Electron is an open source framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From versions 30.0.0-alpha.1 to before 30.0.5 and 31.0.0-alpha.1 to before 31.0.0-beta.1, Electron is vulnerable to an ASAR Integrity...
CVE-2017-12581
- EPSS 1.85%
- Veröffentlicht 06.08.2017 02:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
GitHub Electron before 1.6.8 allows remote command execution because of a nodeIntegration bypass vulnerability. This also affects all applications that bundle Electron code equivalent to 1.6.8 or earlier. Bypassing the Same Origin Policy (SOP) is a p...