Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-1000025

Опубликовано: 17 июл. 2017
Источник: nvd
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfiltration of stored passwords for a selected set of websites.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gnome:epiphany:3.18.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.6:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.7:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.8:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.9:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.18.10:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.20.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.20.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.20.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.20.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.20.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.20.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.20.6:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.22.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.22.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.22.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.22.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.22.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.22.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.23.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.23.1.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.23.1.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.23.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.23.2.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.23.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:epiphany:3.23.4:*:*:*:*:*:*:*

EPSS

Процентиль: 65%
0.00498
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

ubuntu логотип

CVE-2017-1000025

CVSS3: 7.5
ubuntu
больше 8 лет назад

GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfiltration of stored passwords for a selected set of websites.

debian логотип

CVE-2017-1000025

CVSS3: 7.5
debian
больше 8 лет назад

GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 befo ...

github логотип

GHSA-3gg9-xvf5-p5wm

CVSS3: 7.5
github
больше 3 лет назад

GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfiltration of stored passwords for a selected set of websites.

EPSS

Процентиль: 65%
0.00498
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200