VDB
CVE-2021-45087
CVE-2021-45087
PUBLISHED
CVSS 4.300000190734863 MEDIUM
XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 when View Source mode or Reader mode is used, as demonstrated by a a page title.
EPSS 0.29% · 52.6th percentile
Risk Scores
CVSS 2.0
4.300000190734863
EPSS Score
0.29%
52.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| debian | debian_linux | 10.0, 11.0 |
| gnome | epiphany | 0, 41.0 |
Timeline
- Dec 16, 2021 EPSS Score
- Dec 16, 2021 CVE Published
- Feb 8, 2022 EPSS Score
- Apr 4, 2022 EPSS Score
- May 28, 2022 EPSS Score
- Jul 22, 2022 EPSS Score
- Nov 8, 2022 EPSS Score
- Jan 1, 2023 EPSS Score
- Feb 24, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 20, 2023 EPSS Score
- Jun 13, 2023 EPSS Score
References
- https://gitlab.gnome.org/GNOME/epiphany/-/issues/1612 url
- https://gitlab.gnome.org/GNOME/epiphany/-/merge_requests/1045 url
- DSA-5042 vendor-advisory
- [debian-lts-announce] 20220818 [SECURITY] [DLA 3074-1] epiphany-browser security update mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2021-45087 advisory