Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-fbmd-b72k-f3dt
Summary
Arbitrary file read via window-open IPC in Electron
### Impact
The vulnerability allows arbitrary local file read by defining unsafe window options on a child window opened via window.open.

### Workarounds
Ensure you are calling `event.preventDefault()` on all [`new-window`](https://electronjs.org/docs/api/web-contents#event-new-window) events where the `url` or `options` is not something you expect.

### Fixed Versions
* `9.0.0-beta.21`
* `8.2.4`
* `7.2.4`

### For more information
If you have any questions or comments about this advisory:
* Email us at [security@electronjs.org](mailto:security@electronjs.org)
Aliases
0
alias CVE-2020-4075
1
alias GHSA-f9mq-jph6-9mhm
Fixed_packages
0
url pkg:npm/electron@7.2.4
purl pkg:npm/electron@7.2.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-f81v-9fv8-93cd
5
vulnerability VCID-j7d6-zp3s-67fq
6
vulnerability VCID-nx5d-r4jc-77df
7
vulnerability VCID-p167-yf3n-6qd5
8
vulnerability VCID-qd52-rbd7-qkbn
9
vulnerability VCID-w7f7-5frp-n3br
10
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.2.4
1
url pkg:npm/electron@8.2.4
purl pkg:npm/electron@8.2.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd4u-smpr-auc1
10
vulnerability VCID-qd52-rbd7-qkbn
11
vulnerability VCID-w7f7-5frp-n3br
12
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.2.4
2
url pkg:npm/electron@9.0.1
purl pkg:npm/electron@9.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-j7d6-zp3s-67fq
7
vulnerability VCID-nx5d-r4jc-77df
8
vulnerability VCID-p167-yf3n-6qd5
9
vulnerability VCID-qd4u-smpr-auc1
10
vulnerability VCID-qd52-rbd7-qkbn
11
vulnerability VCID-w7f7-5frp-n3br
12
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@9.0.1
Affected_packages
0
url pkg:npm/electron@7.0.0
purl pkg:npm/electron@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.0.0
1
url pkg:npm/electron@7.0.1
purl pkg:npm/electron@7.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.0.1
2
url pkg:npm/electron@7.1.0
purl pkg:npm/electron@7.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.0
3
url pkg:npm/electron@7.1.1
purl pkg:npm/electron@7.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.1
4
url pkg:npm/electron@7.1.2
purl pkg:npm/electron@7.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.2
5
url pkg:npm/electron@7.1.3
purl pkg:npm/electron@7.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.3
6
url pkg:npm/electron@7.1.4
purl pkg:npm/electron@7.1.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.4
7
url pkg:npm/electron@7.1.5
purl pkg:npm/electron@7.1.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.5
8
url pkg:npm/electron@7.1.6
purl pkg:npm/electron@7.1.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.6
9
url pkg:npm/electron@7.1.7
purl pkg:npm/electron@7.1.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.7
10
url pkg:npm/electron@7.1.8
purl pkg:npm/electron@7.1.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.8
11
url pkg:npm/electron@7.1.9
purl pkg:npm/electron@7.1.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.9
12
url pkg:npm/electron@7.1.10
purl pkg:npm/electron@7.1.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.10
13
url pkg:npm/electron@7.1.11
purl pkg:npm/electron@7.1.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.11
14
url pkg:npm/electron@7.1.12
purl pkg:npm/electron@7.1.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.12
15
url pkg:npm/electron@7.1.13
purl pkg:npm/electron@7.1.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.13
16
url pkg:npm/electron@7.1.14
purl pkg:npm/electron@7.1.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.1.14
17
url pkg:npm/electron@7.2.0
purl pkg:npm/electron@7.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.2.0
18
url pkg:npm/electron@7.2.1
purl pkg:npm/electron@7.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.2.1
19
url pkg:npm/electron@7.2.2
purl pkg:npm/electron@7.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.2.2
20
url pkg:npm/electron@7.2.3
purl pkg:npm/electron@7.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-9rnd-3aeh-g7hr
3
vulnerability VCID-a795-r67e-p3ck
4
vulnerability VCID-a84t-cjcb-tqcw
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-fbmd-b72k-f3dt
8
vulnerability VCID-j7d6-zp3s-67fq
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-rp33-97ps-7ufr
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@7.2.3
21
url pkg:npm/electron@8.0.0
purl pkg:npm/electron@8.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.0.0
22
url pkg:npm/electron@8.0.1
purl pkg:npm/electron@8.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.0.1
23
url pkg:npm/electron@8.0.2
purl pkg:npm/electron@8.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.0.2
24
url pkg:npm/electron@8.0.3
purl pkg:npm/electron@8.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.0.3
25
url pkg:npm/electron@8.1.0
purl pkg:npm/electron@8.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.1.0
26
url pkg:npm/electron@8.1.1
purl pkg:npm/electron@8.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.1.1
27
url pkg:npm/electron@8.2.0
purl pkg:npm/electron@8.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.2.0
28
url pkg:npm/electron@8.2.1
purl pkg:npm/electron@8.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.2.1
29
url pkg:npm/electron@8.2.2
purl pkg:npm/electron@8.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.2.2
30
url pkg:npm/electron@8.2.3
purl pkg:npm/electron@8.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@8.2.3
31
url pkg:npm/electron@9.0.0
purl pkg:npm/electron@9.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-6pvc-cdyz-gkcv
2
vulnerability VCID-7eu1-94qk-nuar
3
vulnerability VCID-9rnd-3aeh-g7hr
4
vulnerability VCID-a795-r67e-p3ck
5
vulnerability VCID-a84t-cjcb-tqcw
6
vulnerability VCID-f81v-9fv8-93cd
7
vulnerability VCID-fahk-eg3e-x7cu
8
vulnerability VCID-fbmd-b72k-f3dt
9
vulnerability VCID-j7d6-zp3s-67fq
10
vulnerability VCID-nx5d-r4jc-77df
11
vulnerability VCID-p167-yf3n-6qd5
12
vulnerability VCID-qd4u-smpr-auc1
13
vulnerability VCID-qd52-rbd7-qkbn
14
vulnerability VCID-rp33-97ps-7ufr
15
vulnerability VCID-w7f7-5frp-n3br
16
vulnerability VCID-xys1-xe1s-jqha
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@9.0.0
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-4075
reference_id
reference_type
scores
0
value 0.00264
scoring_system epss
scoring_elements 0.4975
published_at 2026-04-21T12:55:00Z
1
value 0.00264
scoring_system epss
scoring_elements 0.49738
published_at 2026-04-04T12:55:00Z
2
value 0.00264
scoring_system epss
scoring_elements 0.4969
published_at 2026-04-07T12:55:00Z
3
value 0.00264
scoring_system epss
scoring_elements 0.49745
published_at 2026-04-08T12:55:00Z
4
value 0.00264
scoring_system epss
scoring_elements 0.49739
published_at 2026-04-09T12:55:00Z
5
value 0.00264
scoring_system epss
scoring_elements 0.49757
published_at 2026-04-11T12:55:00Z
6
value 0.00264
scoring_system epss
scoring_elements 0.49729
published_at 2026-04-12T12:55:00Z
7
value 0.00264
scoring_system epss
scoring_elements 0.4973
published_at 2026-04-13T12:55:00Z
8
value 0.00264
scoring_system epss
scoring_elements 0.49777
published_at 2026-04-18T12:55:00Z
9
value 0.00264
scoring_system epss
scoring_elements 0.49679
published_at 2026-04-01T12:55:00Z
10
value 0.00264
scoring_system epss
scoring_elements 0.4971
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-4075
1
reference_url https://github.com/electron/electron/security/advisories/GHSA-f9mq-jph6-9mhm
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/security/advisories/GHSA-f9mq-jph6-9mhm
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-4075
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-4075
3
reference_url https://www.electronjs.org/releases/stable?page=3#release-notes-for-v824
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.electronjs.org/releases/stable?page=3#release-notes-for-v824
4
reference_url https://github.com/advisories/GHSA-f9mq-jph6-9mhm
reference_id GHSA-f9mq-jph6-9mhm
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f9mq-jph6-9mhm
Weaknesses
0
cwe_id 552
name Files or Directories Accessible to External Parties
description The product makes files or directories accessible to unauthorized actors, even though they should not be.
1
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-fbmd-b72k-f3dt