Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:npm/electron@1.8.0
Typenpm
Namespace
Nameelectron
Version1.8.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version35.7.5
Latest_non_vulnerable_version42.0.0-alpha.5
Affected_by_vulnerabilities
0
url VCID-4s78-xt9y-1kew
vulnerability_id VCID-4s78-xt9y-1kew
summary 
Code Execution by Re-enabling Node.js integration
Electron contains an improper handling of values vulnerability in Webviews that can result in remote code execution. .
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000136.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000136.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-1000136
reference_id
reference_type
scores
0
value 0.01407
scoring_system epss
scoring_elements 0.8051
published_at 2026-04-21T12:55:00Z
1
value 0.01407
scoring_system epss
scoring_elements 0.80508
published_at 2026-04-18T12:55:00Z
2
value 0.01407
scoring_system epss
scoring_elements 0.80507
published_at 2026-04-16T12:55:00Z
3
value 0.01407
scoring_system epss
scoring_elements 0.80479
published_at 2026-04-13T12:55:00Z
4
value 0.01407
scoring_system epss
scoring_elements 0.80486
published_at 2026-04-12T12:55:00Z
5
value 0.01407
scoring_system epss
scoring_elements 0.80501
published_at 2026-04-11T12:55:00Z
6
value 0.01407
scoring_system epss
scoring_elements 0.80482
published_at 2026-04-09T12:55:00Z
7
value 0.01407
scoring_system epss
scoring_elements 0.80443
published_at 2026-04-07T12:55:00Z
8
value 0.01407
scoring_system epss
scoring_elements 0.80454
published_at 2026-04-04T12:55:00Z
9
value 0.01407
scoring_system epss
scoring_elements 0.80433
published_at 2026-04-02T12:55:00Z
10
value 0.01407
scoring_system epss
scoring_elements 0.80426
published_at 2026-04-01T12:55:00Z
11
value 0.01407
scoring_system epss
scoring_elements 0.80473
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-1000136
2
reference_url https://electronjs.org/blog/webview-fix
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://electronjs.org/blog/webview-fix
3
reference_url https://github.com/electron/electron
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron
4
reference_url https://github.com/electron/electron/commit/1a48ee28276e6588dbf4e70e58d78e7bfdc57043
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/commit/1a48ee28276e6588dbf4e70e58d78e7bfdc57043
5
reference_url https://github.com/electron/electron/pull/12271
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/pull/12271
6
reference_url https://github.com/electron/electron/pull/12292
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/pull/12292
7
reference_url https://github.com/electron/electron/pull/12294
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/pull/12294
8
reference_url https://www.electronjs.org/blog/webview-fix
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.electronjs.org/blog/webview-fix
9
reference_url https://www.npmjs.com/advisories/574
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.npmjs.com/advisories/574
10
reference_url https://www.trustwave.com/Resources/SpiderLabs-Blog/CVE-2018-1000136---Electron-nodeIntegration-Bypass
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.trustwave.com/Resources/SpiderLabs-Blog/CVE-2018-1000136---Electron-nodeIntegration-Bypass
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1560094
reference_id 1560094
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1560094
12
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-1000136
reference_id CVE-2018-1000136
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-1000136
13
reference_url https://www.trustwave.com/Resources/SpiderLabs-Blog/CVE-2018-1000136---Electron-nodeIntegration-Bypass/
reference_id CVE-2018-1000136---ELECTRON-NODEINTEGRATION-BYPASS
reference_type
scores
url https://www.trustwave.com/Resources/SpiderLabs-Blog/CVE-2018-1000136---Electron-nodeIntegration-Bypass/
14
reference_url https://github.com/advisories/GHSA-8xwg-wv7v-4vqp
reference_id GHSA-8xwg-wv7v-4vqp
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8xwg-wv7v-4vqp
fixed_packages
0
url pkg:npm/electron@1.8.4
purl pkg:npm/electron@1.8.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-fahk-eg3e-x7cu
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd52-rbd7-qkbn
10
vulnerability VCID-w7f7-5frp-n3br
11
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@1.8.4
1
url pkg:npm/electron@2.0.0-beta.4
purl pkg:npm/electron@2.0.0-beta.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-fahk-eg3e-x7cu
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd52-rbd7-qkbn
10
vulnerability VCID-w7f7-5frp-n3br
11
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@2.0.0-beta.4
2
url pkg:npm/electron@2.0.0-beta.5
purl pkg:npm/electron@2.0.0-beta.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-fahk-eg3e-x7cu
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd52-rbd7-qkbn
10
vulnerability VCID-w7f7-5frp-n3br
11
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@2.0.0-beta.5
aliases CVE-2018-1000136, GHSA-8xwg-wv7v-4vqp
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4s78-xt9y-1kew
1
url VCID-bxwq-t8nc-m7gu
vulnerability_id VCID-bxwq-t8nc-m7gu
summary 
Insecure Default Initialization of Resource
GitHub Electron is affected by a `WebPreferences` vulnerability that can be leveraged to perform remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-15685
reference_id
reference_type
scores
0
value 0.12681
scoring_system epss
scoring_elements 0.93948
published_at 2026-04-01T12:55:00Z
1
value 0.12681
scoring_system epss
scoring_elements 0.94006
published_at 2026-04-21T12:55:00Z
2
value 0.12681
scoring_system epss
scoring_elements 0.94005
published_at 2026-04-18T12:55:00Z
3
value 0.12681
scoring_system epss
scoring_elements 0.94
published_at 2026-04-16T12:55:00Z
4
value 0.12681
scoring_system epss
scoring_elements 0.93985
published_at 2026-04-13T12:55:00Z
5
value 0.12681
scoring_system epss
scoring_elements 0.93981
published_at 2026-04-09T12:55:00Z
6
value 0.12681
scoring_system epss
scoring_elements 0.93977
published_at 2026-04-08T12:55:00Z
7
value 0.12681
scoring_system epss
scoring_elements 0.93969
published_at 2026-04-07T12:55:00Z
8
value 0.12681
scoring_system epss
scoring_elements 0.93966
published_at 2026-04-04T12:55:00Z
9
value 0.12681
scoring_system epss
scoring_elements 0.93957
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-15685
1
reference_url https://electronjs.org/blog/web-preferences-fix
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://electronjs.org/blog/web-preferences-fix
2
reference_url https://github.com/electron/electron
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron
3
reference_url https://github.com/electron/electron/commit/519a02d8d4d28e8a467acb40fb26172a80c9454f
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/commit/519a02d8d4d28e8a467acb40fb26172a80c9454f
4
reference_url https://github.com/electron/electron/commit/80221e52d93a96ea704cb6748ead669c55cff504
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/commit/80221e52d93a96ea704cb6748ead669c55cff504
5
reference_url https://github.com/electron/electron/commit/bab968ca776be28791e4dddfd50c86bd5fae62fa
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/commit/bab968ca776be28791e4dddfd50c86bd5fae62fa
6
reference_url https://github.com/electron/electron/commit/ef0a6d9a1c96efc4657c6dd3a6624eba969f095b
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/commit/ef0a6d9a1c96efc4657c6dd3a6624eba969f095b
7
reference_url https://www.contrastsecurity.com/security-influencers/cve-2018-15685
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements
1
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.contrastsecurity.com/security-influencers/cve-2018-15685
8
reference_url https://www.exploit-db.com/exploits/45272
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.exploit-db.com/exploits/45272
9
reference_url https://www.exploit-db.com/exploits/45272/
reference_id
reference_type
scores
url https://www.exploit-db.com/exploits/45272/
10
reference_url https://www.npmjs.com/advisories/732
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.npmjs.com/advisories/732
11
reference_url https://github.com/nodejs/security-wg/blob/main/vuln/npm/466.json
reference_id 466
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements
url https://github.com/nodejs/security-wg/blob/main/vuln/npm/466.json
12
reference_url https://github.com/matt-/CVE-2018-15685
reference_id CVE-2018-15685
reference_type exploit
scores
url https://github.com/matt-/CVE-2018-15685
13
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/45272.txt
reference_id CVE-2018-15685
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/45272.txt
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-15685
reference_id CVE-2018-15685
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-15685
15
reference_url https://github.com/advisories/GHSA-hv9c-qwqg-qj3v
reference_id GHSA-hv9c-qwqg-qj3v
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hv9c-qwqg-qj3v
fixed_packages
0
url pkg:npm/electron@1.8.8
purl pkg:npm/electron@1.8.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-fahk-eg3e-x7cu
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd52-rbd7-qkbn
10
vulnerability VCID-w7f7-5frp-n3br
11
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@1.8.8
1
url pkg:npm/electron@2.0.8-nightly.20180819
purl pkg:npm/electron@2.0.8-nightly.20180819
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-fahk-eg3e-x7cu
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd52-rbd7-qkbn
10
vulnerability VCID-w7f7-5frp-n3br
11
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@2.0.8-nightly.20180819
2
url pkg:npm/electron@2.0.8
purl pkg:npm/electron@2.0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-fahk-eg3e-x7cu
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd52-rbd7-qkbn
10
vulnerability VCID-w7f7-5frp-n3br
11
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@2.0.8
3
url pkg:npm/electron@3.0.0-beta.3
purl pkg:npm/electron@3.0.0-beta.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-fahk-eg3e-x7cu
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd52-rbd7-qkbn
10
vulnerability VCID-w7f7-5frp-n3br
11
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@3.0.0-beta.3
4
url pkg:npm/electron@3.0.0-beta.7
purl pkg:npm/electron@3.0.0-beta.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-fahk-eg3e-x7cu
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd52-rbd7-qkbn
10
vulnerability VCID-w7f7-5frp-n3br
11
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@3.0.0-beta.7
5
url pkg:npm/electron@3.0.0
purl pkg:npm/electron@3.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-fahk-eg3e-x7cu
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd52-rbd7-qkbn
10
vulnerability VCID-w7f7-5frp-n3br
11
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@3.0.0
aliases CVE-2018-15685, GHSA-hv9c-qwqg-qj3v
risk_score 10.0
exploitability 2.0
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bxwq-t8nc-m7gu
2
url VCID-q288-pvgc-vkaa
vulnerability_id VCID-q288-pvgc-vkaa
summary 
Remote Code Execution (Windows)
GitHub Electron has a vulnerability in the protocol handler.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-1000006
reference_id
reference_type
scores
0
value 0.92322
scoring_system epss
scoring_elements 0.99723
published_at 2026-04-18T12:55:00Z
1
value 0.92322
scoring_system epss
scoring_elements 0.99725
published_at 2026-04-21T12:55:00Z
2
value 0.92322
scoring_system epss
scoring_elements 0.99722
published_at 2026-04-16T12:55:00Z
3
value 0.92322
scoring_system epss
scoring_elements 0.99721
published_at 2026-04-13T12:55:00Z
4
value 0.92363
scoring_system epss
scoring_elements 0.99724
published_at 2026-04-02T12:55:00Z
5
value 0.92363
scoring_system epss
scoring_elements 0.99725
published_at 2026-04-04T12:55:00Z
6
value 0.92363
scoring_system epss
scoring_elements 0.99726
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-1000006
1
reference_url https://electronjs.org/blog/protocol-handler-fix
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://electronjs.org/blog/protocol-handler-fix
2
reference_url https://github.com/advisories/GHSA-w222-53c6-c86p
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-w222-53c6-c86p
3
reference_url https://github.com/electron/electron/releases/tag/v1.8.2-beta.4
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/releases/tag/v1.8.2-beta.4
4
reference_url https://www.exploit-db.com/exploits/43899
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.exploit-db.com/exploits/43899
5
reference_url https://www.exploit-db.com/exploits/43899/
reference_id
reference_type
scores
url https://www.exploit-db.com/exploits/43899/
6
reference_url https://www.exploit-db.com/exploits/44357
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.exploit-db.com/exploits/44357
7
reference_url https://www.exploit-db.com/exploits/44357/
reference_id
reference_type
scores
url https://www.exploit-db.com/exploits/44357/
8
reference_url https://www.npmjs.com/advisories/563
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.npmjs.com/advisories/563
9
reference_url http://www.securityfocus.com/bid/102796
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/102796
10
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/43899.html
reference_id CVE-2018-1000006
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/43899.html
11
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/44357.rb
reference_id CVE-2018-1000006
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/44357.rb
12
reference_url https://medium.com/@Wflki/exploiting-electron-rce-in-exodus-wallet-d9e6db13c374
reference_id CVE-2018-1000006
reference_type exploit
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://medium.com/@Wflki/exploiting-electron-rce-in-exodus-wallet-d9e6db13c374
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-1000006
reference_id CVE-2018-1000006
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-1000006
14
reference_url https://raw.githubusercontent.com/rapid7/metasploit-framework/0a0bef0c4fc52c418782015b1b49daf067ce964c/modules/exploits/windows/browser/exodus.rb
reference_id CVE-2018-1000006
reference_type exploit
scores
url https://raw.githubusercontent.com/rapid7/metasploit-framework/0a0bef0c4fc52c418782015b1b49daf067ce964c/modules/exploits/windows/browser/exodus.rb
fixed_packages
0
url pkg:npm/electron@1.8.2-beta.4
purl pkg:npm/electron@1.8.2-beta.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-4s78-xt9y-1kew
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-nx5d-r4jc-77df
9
vulnerability VCID-p167-yf3n-6qd5
10
vulnerability VCID-qd52-rbd7-qkbn
11
vulnerability VCID-w7f7-5frp-n3br
12
vulnerability VCID-xys1-xe1s-jqha
13
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@1.8.2-beta.4
1
url pkg:npm/electron@1.8.3
purl pkg:npm/electron@1.8.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-4s78-xt9y-1kew
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-nx5d-r4jc-77df
9
vulnerability VCID-p167-yf3n-6qd5
10
vulnerability VCID-qd52-rbd7-qkbn
11
vulnerability VCID-w7f7-5frp-n3br
12
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@1.8.3
aliases CVE-2018-1000006, GHSA-w222-53c6-c86p
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q288-pvgc-vkaa
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:npm/electron@1.8.0