VIR Vulnerability Intelligence Relay

Package impact

npm NPM / electerm

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-45787 medium 5.5 14d ago electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to 3.9.5, deterministic AES-192-CBC with a fixed zero IV, constant KDF salt, and no MAC leads to confid… npm
CVE-2026-43942 medium 5.5 5.5 21d ago Electerm's full process.env exposed to renderer via window.pre.env npm