cvedb.io
CVE-2017-16151
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2018-06-07T02:29:04.487 · Last modified 2026-06-17T01:08:52.953

Summary

Based on details posted by the ElectronJS team; A remote code execution vulnerability has been discovered in Google Chromium that affects all recent versions of Electron. Any Electron app that accesses remote content is vulnerable to this exploit, regardless of whether the [sandbox option](https://electron.atom.io/docs/api/sandbox-option) is enabled.

Affected products

electronjs — electron

Does this affect you?

Add your gear to cvedb and we'll alert you only when electronjs ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.