PT-2018-10943 · Gnome+1 · Gnome Web+1

Published

2018-06-07

Updated

2019-10-03

CVE-2018-12016

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions GNOME Web (aka Epiphany) versions 3.28.2.1 and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash. This can be achieved through specific window.open and document.write calls.

Recommendations For versions 3.28.2.1 and earlier, consider updating to a version that contains a fix for this issue to prevent application crashes due to malicious window.open and document.write calls.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALT-PU-2018-1877

CVE-2018-12016

Affected Products

Alt Linux

Gnome Web

PT-2018-10943 · Gnome+1 · Gnome Web+1

CVE-2018-12016

Related Identifiers

Affected Products

References · 13