Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2026/06/15 12:0 a.m.13 views

PT-2026-49579

Name of the Vulnerable Software and Affected Versions Electron versions 42.3.1 through 42.3.2 Description Incorrect byte length calculations in the Node.js Buffer API cause heap underflow or overflow, which can lead to memory corruption or application crashes. This issue may result in incorrect...

9.3CVSS5.6AI score0.00253EPSS
Exploits0References8
Github Security Blog
Github Security Blogadded 2026/04/03 2:36 a.m.6 views

Electron: USB device selection not validated against filtered device list

Impact The select-usb-device event callback did not validate the chosen device ID against the filtered list that was presented to the handler. An app whose handler could be influenced to select a device ID outside the filtered set would grant access to a device that did not match the renderer's...

5.4CVSS5.9AI score0.00162EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVEadded 2025/05/22 1:18 a.m.6 views

CVE-2017-1000424

Github Electron version 1.6.4 - 1.6.11 and 1.7.0 - 1.7.5 is vulnerable to a URL Spoofing problem when opening PDFs in PDFium resulting loading arbitrary PDFs that a hacker can control...

4.3CVSS6.9AI score0.00982EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/03/22 12:0 a.m.4 views

PT-2022-15061 · Electron · Electron

Name of the Vulnerable Software and Affected Versions: Electron versions prior to 17.0.0-alpha.6 Electron versions prior to 16.0.6 Electron versions prior to 15.3.5 Electron versions prior to 14.2.4 Electron versions prior to 13.6.6 Description: A vulnerability in Electron allows renderers to...

5CVSS5AI score0.00909EPSS
Exploits0References8
OSV
OSVadded 2022/03/03 12:42 p.m.7 views

OPENSUSE-SU-2022:0070-1 Security update for nodejs-electron

This update for nodejs-electron fixes the following issues: - Fix webpack-4 with OpenSSL 3.0 Update to version 16.0.9 https://github.com/electron/electron/releases/tag/v16.0.9 Update to version 16.0.8 https://github.com/electron/electron/releases/tag/v16.0.8 - Add devel package with node headers...

9.6CVSS7.4AI score0.64546EPSS
Exploits7References19
OSV
OSVadded 2020/10/06 5:46 p.m.2 views

GHSA-56PC-6JQP-XQJ8 Context isolation bypass in Electron

Impact Apps using both contextIsolation and sandbox: true are affected. Apps using both contextIsolation and nativeWindowOpen: true are affected. This is a context isolation bypass, meaning that code running in the main world context in the renderer can reach into the isolated Electron context an...

5.6CVSS5.9AI score0.00675EPSS
Exploits0References2
vulnersOsv
vulnersOsvadded 2018/01/23 3:57 a.m.3 views

alertminer-alpha (=1.0.0), electron-prebuilt-compile (>=1.7.0 <=1.7.1) +2 more potentially affected by CVE-2018-1000006 via electron (>=1.7.0 <=1.7.10)

electron NPM version =1.7.0, =1.7.0, =1.0.0, =1.0.1 Source cves: CVE-2018-1000006 Source advisory: OSV:GHSA-W222-53C6-C86P...

9.3CVSS7.4AI score0.84707EPSS
Exploits31
Rows per page
Query Builder