CVE-2025-15215

creationtimestamp| type| source ---|---|--- 2025-12-30 03:38:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mb6gfo6l2o2q...

CVE-2020-15215

Electron before versions 11.0.0-beta.6, 10.1.2, 9.3.1 or 8.5.2 is vulnerable to a context isolation bypass. Apps using both contextIsolation and sandbox: true are affected. Apps using both contextIsolation and nodeIntegrationInSubFrames: true are affected. This is a context isolation bypass,...

CVE-2020-15215 Context isolation bypass in Electron

Electron before versions 11.0.0-beta.6, 10.1.2, 9.3.1 or 8.5.2 is vulnerable to a context isolation bypass. Apps using both contextIsolation and sandbox: true are affected. Apps using both contextIsolation and nodeIntegrationInSubFrames: true are affected. This is a context isolation bypass,...

CVE-2020-15215

CVE-2020-15215 affects Electron before 11.0.0-beta.6, 10.1.2, 9.3.1, or 8.5.2. It is a context isolation bypass whereby code running in the main world context in a renderer can access the isolated Electron context when apps use both contextIsolation and sandbox: true, or contextIsolation and node...

@capacitor-community/electron-core (>=0.0.2 <=1.0.1), @felixrieseberg/electron-prebuilt-compile (>=9.0.0 <=9.3.0) +16 more potentially affected by CVE-2020-15215 via electron (>=9.0.0-beta.1 <=9.3.0)

electron NPM version =9.0.0-beta.1, =0.0.2, =9.0.0, =5.0.0-1, =0.8.2, =0.1.1, =0.3.218, =0.2.9, =3.0.7, =9.0.0, =1.1.52, =3.2.13, =3.1.0, =3.1.10 and more Source cves: CVE-2020-15215 Source advisory: OSV:GHSA-56PC-6JQP-XQJ8...

@amazingcat/amazing-iohook (>=8.2.3 <=8.3.3), @donmahallem/trapeze-client-desktop (=5.1.1) +15 more potentially affected by CVE-2020-15215 via electron (>=8.0.0-beta.1 <=8.5.1)

electron NPM version =8.0.0-beta.1, =8.2.3, =8.0.0, =0.1.0, =4.0.0-beta.1, =1.0.1, =1.7.0, =1.0.3, =1.0.5, =0.0.1, =1.1.35, =1.1.51 and more Source cves: CVE-2020-15215 Source advisory: OSV:GHSA-56PC-6JQP-XQJ8...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1972)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-2081)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.41.1 - x86/speculation: Determine swapgs before alternative instructions are set Patrick Colp Orabug: 30379626 - ieee802154: enforce CAPNETRAW for raw sockets Allen Pais Orabug: 30444947 CVE-2019-17053 - mISDN: enforce CAPNETRAW for raw sockets Ori Nimron Orabug: 30445159...

EulerOS Virtualization for ARM 64 3.0.3.0 : kernel (EulerOS-SA-2019-2309)

According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device i...

Ubuntu: Security Advisory (USN-4147-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : the Linux Kernel (openSUSE-2019-2181)

The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-18551: There was an out of bounds write in the function i2csmbusxferemulated bnc1146163. - CVE-2018-20976: A use after free exists, related to xfsfsfillsuper...

openSUSE Security Update : the Linux Kernel (openSUSE-2019-2173)

The openSUSE Leap 15.0 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-18551: There was an out of bounds write in the function i2csmbusxferemulated bnc1146163. - CVE-2018-20976: A use after free exists, related to xfsfsfillsuper...

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2019:2173-1 Rating: important References: 1047238 1050911 1051510 1054914 1056686 1060662 1061840 1061843 1064597 1064701 1065600 1065729 1066369 1071009 1071306 1078248 1082555 1085030 1085536 1085539...

Debian: Security Advisory (DLA-1919-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-4115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-15215

An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2usb.c driver...

CVE-2019-15215

The CVE-2019-15215 issue is a use-after-free in the Linux kernel, caused by a malicious USB device via the cpia2_usb.c driver (drivers/media/usb/cpia2). Affected: kernel versions before 5.2.6. Impact: potential local denial of service or privilege issues due to use-after-free in USB cpia2 handlin...

CVE-2017-15215

Reflected XSS vulnerability in Shaarli v0.9.1 allows an unauthenticated attacker to inject JavaScript via the searchtags parameter to index.php. If the victim is an administrator, an attacker can for example take over the admin session or change global settings or add/delete links. It is also...

CVE-2017-15215

Reflected XSS vulnerability in Shaarli v0.9.1 allows an unauthenticated attacker to inject JavaScript via the searchtags parameter to index.php. If the victim is an administrator, an attacker can for example take over the admin session or change global settings or add/delete links. It is also...