Beakerbrowser: Security Vulnerabilities
The Beaker library through 1.11.0 for Python is affected by deserialization of untrusted data, which could lead to arbitrary code execution.
CVSS Score
6.8
EPSS Score
0.001
Published
2020-06-26
Beaker before 0.8.9 allows a sandbox escape, enabling system access and code execution. This occurs because Electron context isolation is not used, and therefore an attacker can conduct a prototype-pollution attack against the Electron internal messaging API.
CVSS Score
10.0
EPSS Score
0.006
Published
2020-04-23