CVE-2021-45086 vulnerability in GNOME and Other Products
Published on December 16, 2021

XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 because a server's suggested_filename is used as the pdf_name value in PDF.js.

Vendor Advisory NVD

Products Associated with CVE-2021-45086

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-45086 are published in these products:

GNOME Epiphany

Debian Linux

Canonical Ubuntu Linux

Exploit Probability

EPSS

0.21%

Percentile

43.57%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-45086 vulnerability in GNOME and Other ProductsPublished on December 16, 2021

Products Associated with CVE-2021-45086

Exploit Probability

CVE-2021-45086 vulnerability in GNOME and Other Products
Published on December 16, 2021