| Max CVSS | 6.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-4077 | 6.5 |
In Electron before versions 7.2.4, 8.2.4, and 9.0.0-beta21, there is a context isolation bypass. Code running in the main world context in the renderer can reach into the isolated Electron context and perform privileged actions. Apps using both `cont
|
13-07-2020 - 19:51 | 07-07-2020 - 00:15 | |
| CVE-2020-4076 | 3.6 |
In Electron before versions 7.2.4, 8.2.4, and 9.0.0-beta21, there is a context isolation bypass. Code running in the main world context in the renderer can reach into the isolated Electron context and perform privileged actions. Apps using contextIso
|
13-07-2020 - 19:48 | 07-07-2020 - 00:15 | |
| CVE-2020-4075 | 2.1 |
In Electron before versions 7.2.4, 8.2.4, and 9.0.0-beta21, arbitrary local file read is possible by defining unsafe window options on a child window opened via window.open. As a workaround, ensure you are calling `event.preventDefault()` on all new-
|
13-07-2020 - 18:51 | 07-07-2020 - 00:15 | |
| CVE-2020-15096 | 4.0 |
In Electron before versions 6.1.1, 7.2.4, 8.2.4, and 9.0.0-beta21, there is a context isolation bypass, meaning that code running in the main world context in the renderer can reach into the isolated Electron context and perform privileged actions. A
|
10-07-2020 - 19:49 | 07-07-2020 - 00:15 |