Описание
An issue in NetSurf v.3.11 allows a remote attacker to execute arbitrary code via the dom_node_normalize function
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| netsurf | unfixed | package | ||
| netsurf | no-dsa | trixie | package | |
| netsurf | no-dsa | bookworm | package | |
| netsurf | postponed | bullseye | package |
Примечания
https://github.com/Fysac/netsurf-disclosure/tree/main/CVE-2024-51317
https://github.com/netsurf-browser/libdom/commit/7d317df204d18f161f0a8ffed958ef60eb2692fe
EPSS
Процентиль: 38%
0.0017
Низкий
Связанные уязвимости
CVSS3: 6.5
ubuntu
3 месяца назад
An issue in NetSurf v.3.11 allows a remote attacker to execute arbitrary code via the dom_node_normalize function
CVSS3: 6.5
nvd
3 месяца назад
An issue in NetSurf v.3.11 allows a remote attacker to execute arbitrary code via the dom_node_normalize function
CVSS3: 6.5
github
3 месяца назад
An issue in NetSurf v.3.11 allows a remote attacker to execute arbitrary code via the dom_node_normalize function
EPSS
Процентиль: 38%
0.0017
Низкий