Lucene search
K

215 matches found

Snyk
Snyk
added 2026/06/15 8:20 p.m.10 views

Buffer Overflow

Overview electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS. Affected versions of this package are vulnerable to Buffer Overflow in the Buffer API. An attacker can cause application crashes or trigger incorrect memory allocations by...

9.8CVSS5.9AI score0.00253EPSS
Exploits0References2
Fedora
Fedora
added 2026/04/28 1:14 a.m.7 views

[SECURITY] Fedora 42 Update: flatpak-1.16.6-1.fc42

flatpak is a system for building, distributing and running sandboxed desktop applications on Linux. See https://wiki.gnome.org/Projects/SandboxedApps for more information...

10CVSS7.7AI score0.0168EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2011-2581

Malware in sbrugna...

4.3CVSS6.2AI score0.013EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-41413

Malicious code in bioql PyPI...

5.8CVSS6.6AI score0.00164EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-49147

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00393EPSS
Exploits0References3
OSV
OSV
added 2025/07/01 1:43 a.m.5 views

CVE-2024-46992 Electron ASAR Integrity bypass by just modifying the content

Electron is an open source framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From versions 30.0.0-alpha.1 to before 30.0.5 and 31.0.0-alpha.1 to before 31.0.0-beta.1, Electron is vulnerable to an ASAR Integrity bypass. This only impacts apps that have the...

7.8CVSS6.5AI score0.00105EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/03/26 2:5 p.m.7 views

Important: Red Hat Security Advisory: libreoffice security update

An update for libreoffice is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

7.8CVSS7.6AI score0.00291EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/03/17 2:12 a.m.13 views

Important: Red Hat Security Advisory: libreoffice security update

An update for libreoffice is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.8CVSS7.6AI score0.00291EPSS
Exploits0References2
Fedora
Fedora
added 2025/01/15 1:40 a.m.19 views

[SECURITY] Fedora 40 Update: perl-Net-OAuth-0.30-1.fc40

Perl implementation of OAuth, an open protocol to allow secure API authentication in a simple and standard method from desktop and web applications. In practical terms, a mechanism for a Consumer to request protected resources from a Service Provider on behalf of a user...

5.3CVSS9.4AI score0.00585EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2025/01/07 2:44 p.m.1 views

Security update for gtk3

This update for gtk3 fixes the following issues: CVE-2024-6655: Fixed library injection from current working directory bsc1228120. Other fixes: - Updated to version 3.24.43 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

7CVSS7.1AI score0.00464EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2024/11/06 10:11 a.m.2 views

Security update for libgsf

This update for libgsf fixes the following issues: CVE-2024-42415, CVE-2024-36474: Fixed integer overflows affecting memory allocation bsc1231282, bsc1231283. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.8CVSS6.2AI score0.00457EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2024/08/21 8:28 a.m.15 views

Moderate: Red Hat Security Advisory: libreoffice security update

An update for libreoffice is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update ...

7.8CVSS7.1AI score0.00238EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/08/19 6:52 p.m.12 views

Moderate: Red Hat Security Advisory: libreoffice security update

An update for libreoffice is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

7.8CVSS7.1AI score0.00238EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/07/02 4:58 p.m.16 views

Moderate: Red Hat Security Advisory: libreoffice security update

An update for libreoffice is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

6.5CVSS6.8AI score0.01008EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/06/17 4:20 p.m.21 views

Important: Red Hat Security Advisory: flatpak security update

An update for flatpak is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as...

8.4CVSS7.3AI score0.00512EPSS
Exploits1References2
OSV
OSV
added 2024/06/17 12:0 a.m.22 views

ALSA-2024:3959 Important: flatpak security update

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Security Fixes: flatpak: sandbox escape via RequestBackground portal CVE-2024-32462 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other relat...

8.4CVSS8.7AI score0.00512EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/05/14 12:0 a.m.22 views

Rocky Linux 9 : flatpak (RLSA-2023:6518)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:6518 advisory. - Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Versions prior to 1.10.8, 1.12.8, 1.14.4, and...

10CVSS7.1AI score0.00887EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.32 views

CentOS 9 : flatpak-1.12.8-1.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the flatpak-1.12.8-1.el9 build changelog. - Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Versions prior to 1.10.8, 1.12.8,...

10CVSS7.1AI score0.00887EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/12/01 9:45 p.m.26 views

CVE-2023-44402 ASAR Integrity bypass via filetype confusion in electron

Electron is an open source framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. This only impacts apps that have the embeddedAsarIntegrityValidation and onlyLoadAppFromAsar fuses enabled. Apps without these fuses enabled are not impacted. This issue is specifi...

6.1CVSS6.8AI score0.00207EPSS
Exploits0References3
CVE
CVE
added 2023/12/01 9:45 p.m.55 views

CVE-2023-44402

CVE-2023-44402 concerns Electron where ASAR integrity checks can be bypassed when embeddedAsarIntegrityValidation and onlyLoadAppFromAsar fuses are enabled on macOS. The issue requires an attacker with write access to the app’s filesystem (e.g., the .app bundle) to exploit, potentially allowing l...

7CVSS6.2AI score0.00207EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder