Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:npm/electron@25.8.4
purl pkg:npm/electron@25.8.4
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-8n69-6muc-dqae Out-of-bounds Write Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2023-5217
GHSA-qqvq-6xgj-jw8g

Date Actor Action Vulnerability Source VulnerableCode Version
2026-05-30T21:02:02.973024+00:00 GitLab Importer Fixing VCID-8n69-6muc-dqae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/electron/CVE-2023-5217.yml 38.6.0