Buffer overflow in Electron
CVE-2026-54257
Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From 42.3.1 until 42.3.3, Buffer performs incorrect byte length calculations resulting in heap buffer under/overflow. Most apps will cr…
Vulnerability class: Buffer Overflow
Affected products
- Electron — versions >= 42.3.1, < 42.3.3
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)