Description
No description available.
Recommendation
Update the electerm package to the latest compatible version. Followings are version details:
- Affected version(s): >= 3.0.6, < 3.8.8
- Patched version(s): 3.8.8
References
- GHSA-mpm8-cx2p-626q
- CVE-2026-43944
- CWE-20
- CWE-829
- CWE-94
- CAPEC-310
- OWASP 2021-A3
- OWASP 2021-A6
- OWASP 2021-A8
Related Issues
- Electerm Local code through electerm's single-instance socket - CVE-2026-45353
- protobuf.js: Code injection through bytes field defaults in generated toObject code - CVE-2026-44293
- electerm has Command Injection via runLinux funtion - CVE-2026-41501
- Electerm runWidget has a path traversal that leads to arbitrary code execution - CVE-2026-43940
You might also like:
- Tags:
- npm
- electerm
Anything's wrong? Let us know Last updated on May 13, 2026


