CVE-2024-46993
- EPSS 0.13%
- Veröffentlicht 01.07.2025 01:55:51
- Zuletzt bearbeitet 15.04.2026 00:35:42
Electron is an open source framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. In versions prior to 28.3.2, 29.3.3, and 30.0.3, the nativeImage.createFromPath() and nativeImage.createFromBuffer() functions call a...
CVE-2024-46992
- EPSS 0.11%
- Veröffentlicht 01.07.2025 01:43:13
- Zuletzt bearbeitet 15.04.2026 00:35:42
Electron is an open source framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From versions 30.0.0-alpha.1 to before 30.0.5 and 31.0.0-alpha.1 to before 31.0.0-beta.1, Electron is vulnerable to an ASAR Integrity...
CVE-2017-12581
- EPSS 6.69%
- Veröffentlicht 06.08.2017 02:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
GitHub Electron before 1.6.8 allows remote command execution because of a nodeIntegration bypass vulnerability. This also affects all applications that bundle Electron code equivalent to 1.6.8 or earlier. Bypassing the Same Origin Policy (SOP) is a p...