Epiphany Security Vulnerabilities and Issues — Epiphany CVE List

Lucene search

GnomeEpiphany

5 matches found

CVE•added 2021/12/16 3:15 a.m.•96 views

CVE-2021-45085

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 via an about: page, as demonstrated by ephy-about:overview when a user visits an XSS payload page often enough to place that page on the Most Visited list.

6.1CVSS5.8AI score0.00316EPSS

CVE•added 2021/12/16 3:15 a.m.•93 views

CVE-2021-45086

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 because a server's suggested_filename is used as the pdf_name value in PDF.js.

6.1CVSS5.9AI score0.00316EPSS

CVE•added 2021/12/16 3:15 a.m.•90 views

CVE-2021-45087

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 when View Source mode or Reader mode is used, as demonstrated by a a page title.

6.1CVSS5.9AI score0.00316EPSS

CVE•added 2021/12/16 3:15 a.m.•83 views

CVE-2021-45088

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 via an error page.

6.1CVSS5.9AI score0.00316EPSS

CVE•added 2009/01/28 11:30 a.m.•65 views

CVE-2008-5985

Untrusted search path vulnerability in the Python interface in Epiphany 2.22.3, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).

6.9CVSS6.1AI score0.00134EPSS