Description
In Electron before versions 11.0.0-beta.1, 10.0.1, 9.3.0 or 8.5.1 the `will-navigate` event that apps use to prevent navigations to unexpected destinations as per our security recommendations can be bypassed when a sub-frame performs a top-frame navigation across sites. The issue is patched in versions 11.0.0-beta.1, 10.0.1, 9.3.0 or 8.5.1 As a workaround sandbox all your iframes using the sandbox attribute. This will prevent them creating top-frame navigations and is good practice anyway.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_confirm
https://github.com/electron/electron/security/advisories/GHSA-2q4g-w47c-4674
Patch, Third Party Advisory x_refsource_misc
https://github.com/electron/electron/commit/18613925610ba319da7f497b6deed85ad712c59b
Scores
CVSS v3
7.5
EPSS
0.0030
EPSS Percentile
52.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L
Details
CWE
CWE-20
CWE-693
Status
published
Products (2)
electronjs/electron
8.0.0 - 8.5.1
npm/electron
8.0.0-beta.0 - 8.5.1npm
Published
Oct 06, 2020
Tracked Since
Feb 18, 2026