Lucene search
K

4 matches found

NVD
NVD
added 2025/07/01 2:15 a.m.12 views

CVE-2024-46992

Electron is an open source framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From versions 30.0.0-alpha.1 to before 30.0.5 and 31.0.0-alpha.1 to before 31.0.0-beta.1, Electron is vulnerable to an ASAR Integrity bypass. This only impacts apps that have the...

7.8CVSS0.00105EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/01 1:43 a.m.9 views

CVE-2024-46992 Electron ASAR Integrity bypass by just modifying the content

Electron is an open source framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From versions 30.0.0-alpha.1 to before 30.0.5 and 31.0.0-alpha.1 to before 31.0.0-beta.1, Electron is vulnerable to an ASAR Integrity bypass. This only impacts apps that have the...

7.8CVSS0.00105EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/06/30 5:54 p.m.8 views

electron ASAR Integrity bypass by just modifying the content

electron's ASAR Integrity can be bypass by modifying the content. Impact This only impacts apps that have the embeddedAsarIntegrityValidation and onlyLoadAppFromAsar fuses enabled. Apps without these fuses enabled are not impacted. This issue is specific to Windows, apps using these fuses on macO...

7.8CVSS6.5AI score0.00105EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/06/30 5:54 p.m.21 views

GHSA-XW5Q-G62X-2QJC electron ASAR Integrity bypass by just modifying the content

electron's ASAR Integrity can be bypass by modifying the content. Impact This only impacts apps that have the embeddedAsarIntegrityValidation and onlyLoadAppFromAsar fuses enabled. Apps without these fuses enabled are not impacted. This issue is specific to Windows, apps using these fuses on macO...

7.8CVSS6.9AI score0.00105EPSS
Exploits0References4
Rows per page
Query Builder