PT-2021-24199 · Gnome+3 · Gnome Web+3

Published

2021-12-16

Updated

2022-08-19

CVE-2021-45087

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions: GNOME Web (aka Epiphany) versions prior to 40.4 GNOME Web (aka Epiphany) versions 41.x prior to 41.1

Description: The issue allows XSS to occur when View Source mode or Reader mode is used, as demonstrated by a page title.

Recommendations: For versions prior to 40.4, update to version 40.4 or later. For versions 41.x prior to 41.1, update to version 41.1 or later.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

ALT-PU-2021-3546

ALT-PU-2021-3624

CVE-2021-45087

DLA-3074-1

DSA-5042-1

MGASA-2022-0053

OESA-2022-1627

USN-5561-1

Affected Products

Alt Linux

Gnome Web

Linuxmint

Ubuntu

PT-2021-24199 · Gnome+3 · Gnome Web+3

CVE-2021-45087

Weakness Enumeration

Related Identifiers

Affected Products

References · 28