Affected versions of the package would incorrectly reject certain certificates during HTTPS requests, due to a flaw in Chrome where SSL/TLS certificates are incorrectly rejected 10 weeks from the build time of
libchromiumcontent. This could cause users to use an insecure protocol and be vulnerable to a Man-in-the-Middle (MitM) attack.
electron to version 1.4.12 or higher.
- Snyk ID
- 09 Dec, 2016
- 09 Oct, 2017