PT-2018-10166 · Qutebrowser+1 · Qutebrowser+1
The-Compiler
·
Published
2018-07-12
·
Updated
2024-06-15
·
CVE-2018-10895
CVSS v3.1
9.3
Critical
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
qutebrowser versions prior to 1.4.1
Description
The issue allows malicious websites to access 'qute://*' URLs, potentially leading to arbitrary code execution. This can be achieved by loading a 'qute://settings/set' URL, which sets the
editor.command to a bash script.Recommendations
For versions prior to 1.4.1, update to version 1.4.1 or later to resolve the issue. As a temporary workaround, consider restricting access to 'qute://*' URLs to prevent malicious websites from exploiting this flaw. Additionally, avoid using the
editor.command variable to execute bash scripts until the issue is resolved.Exploit
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Suse
Qutebrowser