Unrated severityNVD Advisory· Published Dec 16, 2021· Updated Aug 4, 2024
CVE-2021-45086
CVE-2021-45086
Description
XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 because a server's suggested_filename is used as the pdf_name value in PDF.js.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- GNOME/GNOME Webdescription
- Range: <40.4, >=41.0 <41.1
Patches
Vulnerability mechanics
References
3- www.debian.org/security/2022/dsa-5042mitrevendor-advisoryx_refsource_DEBIAN
- gitlab.gnome.org/GNOME/epiphany/-/issues/1612mitrex_refsource_MISC
- gitlab.gnome.org/GNOME/epiphany/-/merge_requests/1045mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.