AIKIDO-2024-10435

electron is vulnerable to Out-of-bounds Write

Critical

electron JS

AIKIDO-2024-10435: electron is vulnerable to Out-of-bounds Write in versions 31.0.0 - 31.7.3 and 32.0.0 - 32.2.2.

Out-of-bounds Write

Vuln in 31.0.0 - 31.7.3

Fixed in 31.7.4

Vuln in 32.0.0 - 32.2.2

Fixed in 32.2.3

CVE-2024-10487

TL;DR

Out of bounds write in Dawn in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Critical)

Who does this affect?

You're affected if you are using a version which is within vulnerability ranges.

How can it be fixed?

Upgrade electron library to patch version.

Background info

Link to vendor website

🇪🇺 Grauwpoort 1, 9000 Ghent, Belgium

🇺🇸 95 Third St, 2nd Fl, San Francisco, CA 94103, US

AIKIDO-2024-10435

electron is vulnerable to Out-of-bounds Write

electron JS

AIKIDO-2024-10435: electron is vulnerable to Out-of-bounds Write in versions 31.0.0 - 31.7.3 and 32.0.0 - 32.2.2.

Don’t be left in the dark