electron is vulnerable to privilege escalation. An attacker can obtain access to a bluetooth device via the web bluetooth API if the application has not configured a custom select-bluetooth-device
event handler.
github.com/advisories/GHSA-3p22-ghq8-v749
github.com/electron/electron/commit/105ab32645822dd76895de7b969df167fbfe77fa
github.com/electron/electron/commit/6dc9d0629acb40243ef4121aa09349abbe6dd43a
github.com/electron/electron/commit/ab94340567cc50002d578f9c8e2bd883cd2984e5
github.com/electron/electron/commit/d5dd50f87e3de5c026f60f155bb9c312bc766aee
github.com/electron/electron/commit/ea8275042bc54d4a313657738e763a22659f55e3
github.com/electron/electron/pull/32178
github.com/electron/electron/pull/32240
github.com/electron/electron/pull/32241
github.com/electron/electron/pull/32242
github.com/electron/electron/pull/32243
github.com/electron/electron/pull/32244
github.com/electron/electron/pull/32245
github.com/electron/electron/security/advisories/GHSA-3p22-ghq8-v749