Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/epiphany-browser@2.22.3-9

Type deb

Namespace debian

Name epiphany-browser

Version 2.22.3-9

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 48.5-0+deb13u1

Latest_non_vulnerable_version 48.5-0+deb13u1

Affected_by_vulnerabilities

url VCID-4ayz-e7qd-q3hv

vulnerability_id VCID-4ayz-e7qd-q3hv

summary security update

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-45085

reference_id

reference_type

scores

value	0.00288
scoring_system	epss
scoring_elements	0.52171
published_at	2026-04-01T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52214
published_at	2026-04-02T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52242
published_at	2026-04-04T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52206
published_at	2026-04-07T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52259
published_at	2026-04-08T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52254
published_at	2026-04-09T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52305
published_at	2026-04-11T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52289
published_at	2026-04-12T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52275
published_at	2026-04-13T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52313
published_at	2026-04-16T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52316
published_at	2026-04-18T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52299
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-45085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45085
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45086
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45086

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45087
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45087

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45088
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45088

reference_url	https://usn.ubuntu.com/5561-1/
reference_id	USN-5561-1
reference_type
scores
url	https://usn.ubuntu.com/5561-1/

fixed_packages

url pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

purl pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-bpgn-654d-5kh6

vulnerability	VCID-qu2d-vqp3-w3e3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@3.38.2-1%252Bdeb11u3

aliases CVE-2021-45085

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4ayz-e7qd-q3hv

url VCID-drpr-qvbq-c7ep

vulnerability_id VCID-drpr-qvbq-c7ep

summary A vulnerability has been discovered in Epiphany, which can lead to a buffer overflow.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-29536

reference_id

reference_type

scores

value	0.00151
scoring_system	epss
scoring_elements	0.35712
published_at	2026-04-21T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.35863
published_at	2026-04-02T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.3589
published_at	2026-04-04T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.3572
published_at	2026-04-07T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.35766
published_at	2026-04-08T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.35789
published_at	2026-04-09T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.35798
published_at	2026-04-11T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.35754
published_at	2026-04-12T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.35731
published_at	2026-04-13T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.35772
published_at	2026-04-16T12:55:00Z

value	0.00151
scoring_system	epss
scoring_elements	0.35761
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29536

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1009959
reference_id	1009959
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1009959

reference_url

https://security.archlinux.org/AVG-2684

reference_id

AVG-2684

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2684

reference_url	https://security.gentoo.org/glsa/202405-27
reference_id	GLSA-202405-27
reference_type
scores
url	https://security.gentoo.org/glsa/202405-27

reference_url	https://usn.ubuntu.com/5561-1/
reference_id	USN-5561-1
reference_type
scores
url	https://usn.ubuntu.com/5561-1/

fixed_packages

url pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

purl pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-bpgn-654d-5kh6

vulnerability	VCID-qu2d-vqp3-w3e3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@3.38.2-1%252Bdeb11u3

aliases CVE-2022-29536

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-drpr-qvbq-c7ep

url VCID-fw5u-mcy4-1uaz

vulnerability_id VCID-fw5u-mcy4-1uaz

summary ephy-session.c in libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows remote attackers to cause a denial of service (application crash) via JavaScript code that triggers access to a NULL URL, as demonstrated by a crafted window.open call.

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00043.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00043.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-11396

reference_id

reference_type

scores

value	0.00685
scoring_system	epss
scoring_elements	0.71696
published_at	2026-04-21T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71714
published_at	2026-04-18T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71627
published_at	2026-04-01T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71634
published_at	2026-04-02T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71652
published_at	2026-04-04T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71625
published_at	2026-04-07T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71665
published_at	2026-04-08T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71675
published_at	2026-04-09T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71699
published_at	2026-04-11T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71683
published_at	2026-04-12T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71664
published_at	2026-04-13T12:55:00Z

value	0.00685
scoring_system	epss
scoring_elements	0.71708
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-11396

reference_url	https://bugzilla.gnome.org/show_bug.cgi?id=795740
reference_id
reference_type
scores
url	https://bugzilla.gnome.org/show_bug.cgi?id=795740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11396
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11396

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=899409
reference_id	899409
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=899409

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany::::::::
reference_id	cpe:2.3:a:gnome:epiphany::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-11396

reference_id

CVE-2018-11396

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-11396

fixed_packages

url pkg:deb/debian/epiphany-browser@3.32.1.2-3~deb10u1

purl pkg:deb/debian/epiphany-browser@3.32.1.2-3~deb10u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4ayz-e7qd-q3hv

vulnerability	VCID-drpr-qvbq-c7ep

vulnerability	VCID-hk4w-wqwm-b7dx

vulnerability	VCID-kr9h-du4n-zbck

vulnerability	VCID-t8h7-hah9-bkaw

vulnerability	VCID-v1k1-swqj-akcj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@3.32.1.2-3~deb10u1

aliases CVE-2018-11396

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fw5u-mcy4-1uaz

url VCID-h8vr-29am-jueb

vulnerability_id VCID-h8vr-29am-jueb

summary Epiphany 2.28 and 2.29, when WebKit and LibSoup are used, unconditionally displays a closed-lock icon for any URL beginning with the https: substring, without any warning to the user, which allows man-in-the-middle attackers to spoof arbitrary https web sites via a crafted X.509 server certificate.

references

reference_url	http://blog.fefe.de/?ts=b26ca29d
reference_id
reference_type
scores
url	http://blog.fefe.de/?ts=b26ca29d

reference_url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=564690
reference_id
reference_type
scores
url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=564690

reference_url	http://bugzilla-attachments.gnome.org/attachment.cgi?id=154330
reference_id
reference_type
scores
url	http://bugzilla-attachments.gnome.org/attachment.cgi?id=154330

reference_url	http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-3312

reference_id

reference_type

scores

value	0.00533
scoring_system	epss
scoring_elements	0.67345
published_at	2026-04-21T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67245
published_at	2026-04-01T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67281
published_at	2026-04-02T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67304
published_at	2026-04-04T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67282
published_at	2026-04-07T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67333
published_at	2026-04-08T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67347
published_at	2026-04-09T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67367
published_at	2026-04-18T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67355
published_at	2026-04-12T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67319
published_at	2026-04-13T12:55:00Z

value	0.00533
scoring_system	epss
scoring_elements	0.67354
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-3312

reference_url	https://bugzilla.gnome.org/show_bug.cgi?id=600663
reference_id
reference_type
scores
url	https://bugzilla.gnome.org/show_bug.cgi?id=600663

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3312
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3312

reference_url	http://secunia.com/advisories/43068
reference_id
reference_type
scores
url	http://secunia.com/advisories/43068

reference_url	http://www.openwall.com/lists/oss-security/2010/09/17/10
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2010/09/17/10

reference_url	http://www.openwall.com/lists/oss-security/2010/09/17/12
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2010/09/17/12

reference_url	http://www.openwall.com/lists/oss-security/2010/09/17/13
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2010/09/17/13

reference_url	http://www.openwall.com/lists/oss-security/2010/09/17/5
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2010/09/17/5

reference_url	http://www.openwall.com/lists/oss-security/2010/09/17/6
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2010/09/17/6

reference_url	http://www.openwall.com/lists/oss-security/2010/09/20/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2010/09/20/2

reference_url	http://www.openwall.com/lists/oss-security/2010/09/21/5
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2010/09/21/5

reference_url	http://www.vupen.com/english/advisories/2011/0212
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0212

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=564690
reference_id	564690
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=564690

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany:2.28:::::::*
reference_id	cpe:2.3:a:gnome:epiphany:2.28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany:2.28:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany:2.29:::::::*
reference_id	cpe:2.3:a:gnome:epiphany:2.29:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany:2.29:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2010-3312

reference_id

CVE-2010-3312

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2010-3312

fixed_packages

url pkg:deb/debian/epiphany-browser@2.30.6-1

purl pkg:deb/debian/epiphany-browser@2.30.6-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4ayz-e7qd-q3hv

vulnerability	VCID-drpr-qvbq-c7ep

vulnerability	VCID-fw5u-mcy4-1uaz

vulnerability	VCID-hk4w-wqwm-b7dx

vulnerability	VCID-kr9h-du4n-zbck

vulnerability	VCID-t8h7-hah9-bkaw

vulnerability	VCID-u2z3-9rm9-suda

vulnerability	VCID-v1k1-swqj-akcj

vulnerability	VCID-wruk-nknh-2fh4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@2.30.6-1

aliases CVE-2010-3312

risk_score 2.6

exploitability 0.5

weighted_severity 5.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h8vr-29am-jueb

url VCID-hk4w-wqwm-b7dx

vulnerability_id VCID-hk4w-wqwm-b7dx

summary security update

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-45086

reference_id

reference_type

scores

value	0.00212
scoring_system	epss
scoring_elements	0.43693
published_at	2026-04-01T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.43749
published_at	2026-04-02T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.43773
published_at	2026-04-04T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.43707
published_at	2026-04-07T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.43757
published_at	2026-04-08T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.4376
published_at	2026-04-09T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.4378
published_at	2026-04-11T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.43748
published_at	2026-04-12T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.43732
published_at	2026-04-13T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.43793
published_at	2026-04-16T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.43784
published_at	2026-04-18T12:55:00Z

value	0.00212
scoring_system	epss
scoring_elements	0.43717
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-45086

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45085
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45086
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45086

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45087
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45087

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45088
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45088

reference_url	https://usn.ubuntu.com/5561-1/
reference_id	USN-5561-1
reference_type
scores
url	https://usn.ubuntu.com/5561-1/

fixed_packages

url pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

purl pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-bpgn-654d-5kh6

vulnerability	VCID-qu2d-vqp3-w3e3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@3.38.2-1%252Bdeb11u3

aliases CVE-2021-45086

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hk4w-wqwm-b7dx

url VCID-kr9h-du4n-zbck

vulnerability_id VCID-kr9h-du4n-zbck

summary security update

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-45087

reference_id

reference_type

scores

value	0.00288
scoring_system	epss
scoring_elements	0.52171
published_at	2026-04-01T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52214
published_at	2026-04-02T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52242
published_at	2026-04-04T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52206
published_at	2026-04-07T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52259
published_at	2026-04-08T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52254
published_at	2026-04-09T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52305
published_at	2026-04-11T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52289
published_at	2026-04-12T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52275
published_at	2026-04-13T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52313
published_at	2026-04-16T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52316
published_at	2026-04-18T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52299
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-45087

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45085
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45086
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45086

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45087
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45087

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45088
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45088

reference_url	https://usn.ubuntu.com/5561-1/
reference_id	USN-5561-1
reference_type
scores
url	https://usn.ubuntu.com/5561-1/

fixed_packages

url pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

purl pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-bpgn-654d-5kh6

vulnerability	VCID-qu2d-vqp3-w3e3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@3.38.2-1%252Bdeb11u3

aliases CVE-2021-45087

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kr9h-du4n-zbck

url VCID-t8h7-hah9-bkaw

vulnerability_id VCID-t8h7-hah9-bkaw

summary gvdb: use after free issue was fixed in gvdb_table_write_contents_async()

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-25085.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-25085.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-25085

reference_id

reference_type

scores

value	0.00538
scoring_system	epss
scoring_elements	0.67476
published_at	2026-04-01T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67512
published_at	2026-04-02T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67533
published_at	2026-04-04T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67511
published_at	2026-04-07T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67563
published_at	2026-04-08T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67577
published_at	2026-04-09T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67599
published_at	2026-04-11T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67586
published_at	2026-04-12T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67553
published_at	2026-04-13T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67588
published_at	2026-04-16T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.676
published_at	2026-04-18T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.6758
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-25085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-25085
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-25085

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2156440
reference_id	2156440
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2156440

fixed_packages

url pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

purl pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-bpgn-654d-5kh6

vulnerability	VCID-qu2d-vqp3-w3e3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@3.38.2-1%252Bdeb11u3

aliases CVE-2019-25085

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t8h7-hah9-bkaw

url VCID-u2z3-9rm9-suda

vulnerability_id VCID-u2z3-9rm9-suda

summary GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfiltration of stored passwords for a selected set of websites.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-1000025

reference_id

reference_type

scores

value	0.00498
scoring_system	epss
scoring_elements	0.65798
published_at	2026-04-01T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65847
published_at	2026-04-02T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65878
published_at	2026-04-04T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65843
published_at	2026-04-07T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65895
published_at	2026-04-08T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65906
published_at	2026-04-09T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65924
published_at	2026-04-11T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65912
published_at	2026-04-12T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65882
published_at	2026-04-13T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65917
published_at	2026-04-16T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65932
published_at	2026-04-18T12:55:00Z

value	0.00498
scoring_system	epss
scoring_elements	0.65921
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-1000025

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000025
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000025

fixed_packages

url pkg:deb/debian/epiphany-browser@3.22.7-1

purl pkg:deb/debian/epiphany-browser@3.22.7-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4ayz-e7qd-q3hv

vulnerability	VCID-drpr-qvbq-c7ep

vulnerability	VCID-fw5u-mcy4-1uaz

vulnerability	VCID-hk4w-wqwm-b7dx

vulnerability	VCID-kr9h-du4n-zbck

vulnerability	VCID-t8h7-hah9-bkaw

vulnerability	VCID-v1k1-swqj-akcj

vulnerability	VCID-wruk-nknh-2fh4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@3.22.7-1

aliases CVE-2017-1000025

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u2z3-9rm9-suda

url VCID-v1k1-swqj-akcj

vulnerability_id VCID-v1k1-swqj-akcj

summary security update

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-45088

reference_id

reference_type

scores

value	0.00288
scoring_system	epss
scoring_elements	0.52171
published_at	2026-04-01T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52214
published_at	2026-04-02T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52242
published_at	2026-04-04T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52206
published_at	2026-04-07T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52259
published_at	2026-04-08T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52254
published_at	2026-04-09T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52305
published_at	2026-04-11T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52289
published_at	2026-04-12T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52275
published_at	2026-04-13T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52313
published_at	2026-04-16T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52316
published_at	2026-04-18T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52299
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-45088

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45085
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45085

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45086
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45086

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45087
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45087

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45088
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45088

fixed_packages

url pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

purl pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-bpgn-654d-5kh6

vulnerability	VCID-qu2d-vqp3-w3e3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@3.38.2-1%252Bdeb11u3

aliases CVE-2021-45088

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v1k1-swqj-akcj

url VCID-wruk-nknh-2fh4

vulnerability_id VCID-wruk-nknh-2fh4

summary libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows remote attackers to cause a denial of service (application crash) via certain window.open and document.write calls.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-12016

reference_id

reference_type

scores

value	0.00894
scoring_system	epss
scoring_elements	0.75611
published_at	2026-04-21T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75627
published_at	2026-04-18T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75522
published_at	2026-04-01T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75524
published_at	2026-04-02T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75554
published_at	2026-04-04T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75534
published_at	2026-04-07T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75576
published_at	2026-04-08T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75587
published_at	2026-04-09T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75612
published_at	2026-04-11T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75593
published_at	2026-04-12T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75586
published_at	2026-04-13T12:55:00Z

value	0.00894
scoring_system	epss
scoring_elements	0.75623
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-12016

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12016
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12016

reference_url	https://github.com/ldpreload/Disclosure/blob/master/EpiphanyDoS.txt
reference_id
reference_type
scores
url	https://github.com/ldpreload/Disclosure/blob/master/EpiphanyDoS.txt

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901018
reference_id	901018
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901018

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany::::::::
reference_id	cpe:2.3:a:gnome:epiphany::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-12016

reference_id

CVE-2018-12016

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-12016

fixed_packages

url pkg:deb/debian/epiphany-browser@3.32.1.2-3~deb10u1

purl pkg:deb/debian/epiphany-browser@3.32.1.2-3~deb10u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4ayz-e7qd-q3hv

vulnerability	VCID-drpr-qvbq-c7ep

vulnerability	VCID-hk4w-wqwm-b7dx

vulnerability	VCID-kr9h-du4n-zbck

vulnerability	VCID-t8h7-hah9-bkaw

vulnerability	VCID-v1k1-swqj-akcj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@3.32.1.2-3~deb10u1

aliases CVE-2018-12016

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wruk-nknh-2fh4

Fixing_vulnerabilities

url VCID-dy4t-8mzp-k3h9

vulnerability_id VCID-dy4t-8mzp-k3h9

summary

An untrusted search path vulnerability in Epiphany might result in the
    execution of arbitrary code.

references

reference_url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504363
reference_id
reference_type
scores
url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504363

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-5985

reference_id

reference_type

scores

value	0.00068
scoring_system	epss
scoring_elements	0.20785
published_at	2026-04-21T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.20837
published_at	2026-04-01T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.20987
published_at	2026-04-02T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21045
published_at	2026-04-04T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.20759
published_at	2026-04-07T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.20838
published_at	2026-04-08T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.20899
published_at	2026-04-09T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.20915
published_at	2026-04-11T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.20871
published_at	2026-04-12T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.20819
published_at	2026-04-13T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.2081
published_at	2026-04-16T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.20802
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-5985

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=481548
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=481548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5985
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5985

reference_url	http://secunia.com/advisories/34187
reference_id
reference_type
scores
url	http://secunia.com/advisories/34187

reference_url	http://www.gentoo.org/security/en/glsa/glsa-200903-16.xml
reference_id
reference_type
scores
url	http://www.gentoo.org/security/en/glsa/glsa-200903-16.xml

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2009:048
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2009:048

reference_url	http://www.openwall.com/lists/oss-security/2009/01/26/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2009/01/26/2

reference_url	http://www.securityfocus.com/bid/33441
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/33441

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504363
reference_id	504363
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504363

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany:2.22.3:::::::*
reference_id	cpe:2.3:a:gnome:epiphany:2.22.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnome:epiphany:2.22.3:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-5985

reference_id

CVE-2008-5985

reference_type

scores

value	6.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2008-5985

reference_url	https://security.gentoo.org/glsa/200903-16
reference_id	GLSA-200903-16
reference_type
scores
url	https://security.gentoo.org/glsa/200903-16

fixed_packages

url pkg:deb/debian/epiphany-browser@2.22.3-9

purl pkg:deb/debian/epiphany-browser@2.22.3-9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4ayz-e7qd-q3hv

vulnerability	VCID-drpr-qvbq-c7ep

vulnerability	VCID-fw5u-mcy4-1uaz

vulnerability	VCID-h8vr-29am-jueb

vulnerability	VCID-hk4w-wqwm-b7dx

vulnerability	VCID-kr9h-du4n-zbck

vulnerability	VCID-t8h7-hah9-bkaw

vulnerability	VCID-u2z3-9rm9-suda

vulnerability	VCID-v1k1-swqj-akcj

vulnerability	VCID-wruk-nknh-2fh4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@2.22.3-9

aliases CVE-2008-5985

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dy4t-8mzp-k3h9

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/epiphany-browser@2.22.3-9

Package Instance