2 matches found
CVE-2023-29198
CVE-2023-29198 affects Electron apps that use contextIsolation with contextBridge. The vulnerability is a context isolation bypass that occurs when a main-world exposed API returns an unserializable object (e.g., a canvas rendering context), allowing access from the renderer to the isolated Elect...
0.app1 (=1.0.52), 0.edsql (>=1.0.49 <=1.0.50) +1616 more potentially affected by CVE-2023-29198 via electron (>=0.1.2 <=22.3.5)
electron NPM version =0.1.2, =1.0.49, =1.0.49, =1.0.49, =1.0.0, =1.0.0, =1.0.6, =4.0.23, =0.0.1, =0.0.7, =0.0.25 and more Source cves: CVE-2023-29198 Source advisory: OSV:GHSA-P7V2-P9M8-QQG7...