Skip to main content

CWE-154

Improper Neutralization of Variable Name Delimiters

1 CVEs Avg CVSS 7.5 MITRE
0
CRITICAL
1
HIGH
0
MEDIUM
0
LOW
1
POC
0
KEV

Monthly

CVE-2024-39698 npm HIGH POC PATCH This Week

electron-updater allows for automatic updates for Electron apps. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

XSS Microsoft Electron Builder
NVD GitHub
CVSS 3.1
7.5
EPSS
0.3%
EPSS 0% CVSS 7.5
HIGH POC PATCH This Week

electron-updater allows for automatic updates for Electron apps. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

XSS Microsoft Electron Builder
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy