Vulnerabilities > Electronjs > Electron > 1.8.7

DATE CVE VULNERABILITY TITLE RISK
2022-06-13 CVE-2022-29257 Unspecified vulnerability in Electronjs Electron
Electron is a framework for writing cross-platform desktop applications using JavaScript (JS), HTML, and CSS.
network
low complexity
electronjs
7.2
7.2
2022-06-13 CVE-2022-29247 Unspecified vulnerability in Electronjs Electron
Electron is a framework for writing cross-platform desktop applications using JavaScript (JS), HTML, and CSS.
network
low complexity
electronjs
critical
 9.8
9.8
2022-03-22 CVE-2022-21718 Missing Authorization vulnerability in Electronjs Electron
Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS.
network
low complexity
electronjs CWE-862
5.0
5.0
2020-07-07 CVE-2020-15096 Unspecified vulnerability in Electronjs Electron
In Electron before versions 6.1.1, 7.2.4, 8.2.4, and 9.0.0-beta21, there is a context isolation bypass, meaning that code running in the main world context in the renderer can reach into the isolated Electron context and perform privileged actions.
network
low complexity
electronjs
6.8
6.8
2018-08-23 CVE-2018-15685 Insecure Default Initialization of Resource vulnerability in Electronjs Electron
GitHub Electron 1.7.15, 1.8.7, 2.0.7, and 3.0.0-beta.6, in certain scenarios involving IFRAME elements and "nativeWindowOpen: true" or "sandbox: true" options, is affected by a WebPreferences vulnerability that can be leveraged to perform remote code execution.
network
high complexity
electronjs CWE-1188
8.1
8.1