Launch Week Day 1: Announcing Security Design Review
Start for Free
CRITICAL 9.8 npm

Chromium Remote Code Execution in electron

GHSA-4w88-rjj3-x7wp · CVE-2017-16151

Published · Modified

Description

Affected versions of ElectronJS are susceptible to a remote code execution vulnerability that occurs when an affected application access remote content, even if the sandbox option is enabled.

Recommendation

Update to electron version 1.7.8 or later.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes