Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
AtomElectron

3 matches found

CVE
CVEadded 2018/01/24 11:0 p.m.84 views

CVE-2018-1000006

The CVE-2018-1000006 entry concerns GitHub Electron. Affected Electron versions include 1.8.2-beta.3 and earlier, 1.7.10 and earlier, and 1.6.15 and earlier. The vulnerability lies in the protocol handler: Electron apps on Windows (10/7/2008) that register custom protocol handlers can be tricked ...

9.3CVSS8.7AI score0.84707EPSS
CVE
CVEadded 2018/01/02 8:0 p.m.57 views

CVE-2017-1000424

The CVE-2017-1000424 entry concerns GitHub Electron versions 1.6.4–1.6.11 and 1.7.0–1.7.5, which are vulnerable to a URL spoofing flaw when opening PDFs in PDFium. This can result in loading arbitrary PDFs controlled by an attacker. The root cause is described as a PDFium-related URL spoofing vul...

4.3CVSS4.6AI score0.00982EPSS
CVE
CVEadded 2016/04/25 6:0 p.m.43 views

CVE-2016-1202

CVE-2016-1202 affects Electron up to version before 0.33.5, where untrusted search path logic allows local attackers to escalate privileges by placing a malicious Node.js module in a parent directory of a require path. Core issue: Electron does not restrict the search path for loading Node module...

7.8CVSS7.5AI score0.00431EPSS