GHSA-vv96-jq6f-v366

Опубликовано: 17 дек. 2021

Источник: github

Github: Не прошло ревью

Описание

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 because a server's suggested_filename is used as the pdf_name value in PDF.js.

Ссылки

EPSS

Процентиль: 44%

0.00212

Низкий

CVE ID

CVE-2021-45086

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-45086

CVSS3: 6.1

ubuntu

около 4 лет назад

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 because a server's suggested_filename is used as the pdf_name value in PDF.js.

CVE-2021-45086

CVSS3: 6.1

nvd

около 4 лет назад

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 because a server's suggested_filename is used as the pdf_name value in PDF.js.

CVE-2021-45086

CVSS3: 6.1

debian

около 4 лет назад

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before ...

EPSS

Процентиль: 44%

0.00212

Низкий

CVE ID

CVE-2021-45086

Дефекты

CWE-79