electron

Top products

The 15 most recently published vulnerabilities affecting electron.

• CVE-2026-34781Electron crashes in clipboard.readImage() on malformed clipboard image data2.8Apr 7, 2026
• CVE-2026-34765Electron named window.open targets not scoped to the opener's browsing context6.0Apr 7, 2026
• CVE-2026-34764Electron has a use-after-free in offscreen shared texture release() callback2.3Apr 6, 2026
• CVE-2026-34780Electron: Context Isolation bypass via contextBridge VideoFrame transfer8.3Apr 4, 2026
• CVE-2026-34779Electron: AppleScript injection in app.moveToApplicationsFolder on macOS6.5Apr 4, 2026
• CVE-2026-34778Electron: Service worker can spoof executeJavaScript IPC replies5.9Apr 3, 2026
• CVE-2026-34777Electron: Incorrect origin passed to permission request handler for iframe requests5.4Apr 3, 2026
• CVE-2026-34776Electron: Out-of-bounds read in second-instance IPC on macOS and Linux5.3Apr 3, 2026
• CVE-2026-34775Electron: nodeIntegrationInWorker not correctly scoped in shared renderer processes6.8Apr 3, 2026
• CVE-2026-34774Electron: Use-after-free in offscreen child window paint callback8.1Apr 3, 2026
• CVE-2026-34773Electron: Registry key path injection in app.setAsDefaultProtocolClient on Windows4.7Apr 3, 2026
• CVE-2026-34772Electron: Use-after-free in download save dialog callback5.8Apr 3, 2026
• CVE-2026-34771Electron: Use-after-free in WebContents fullscreen, pointer-lock, and keyboard-lock permission callbacks7.5Apr 3, 2026
• CVE-2026-34770Electron: Use-after-free in PowerMonitor on Windows and macOS7.0Apr 3, 2026
• CVE-2026-34768Electron: Unquoted executable path in app.setLoginItemSettings on Windows3.9Apr 3, 2026