Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2017-1000025

GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfiltration of stored passwords for a selected set of websites.

  • Published: Jul 17, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2017-1000025
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
gnome / epiphany 3.18.0 3.18.0.x
gnome / epiphany 3.20.6 3.20.6.x
gnome / epiphany 3.18.6 3.18.6.x
gnome / epiphany 3.22.4 3.22.4.x
gnome / epiphany 3.23.4 3.23.4.x
gnome / epiphany 3.20.4 3.20.4.x
gnome / epiphany 3.18.8 3.18.8.x
gnome / epiphany 3.18.9 3.18.9.x
gnome / epiphany 3.18.3 3.18.3.x
gnome / epiphany 3.23.2 3.23.2.x
gnome / epiphany 3.20.0 3.20.0.x
gnome / epiphany 3.20.3 3.20.3.x
gnome / epiphany 3.22.0 3.22.0.x
gnome / epiphany 3.18.7 3.18.7.x
gnome / epiphany 3.18.1 3.18.1.x
gnome / epiphany 3.23.1.2 3.23.1.2.x
gnome / epiphany 3.18.10 3.18.10.x
gnome / epiphany 3.22.3 3.22.3.x
gnome / epiphany 3.23.1 3.23.1.x
gnome / epiphany 3.18.4 3.18.4.x
gnome / epiphany 3.22.2 3.22.2.x
gnome / epiphany 3.20.1 3.20.1.x
gnome / epiphany 3.22.1 3.22.1.x
gnome / epiphany 3.18.5 3.18.5.x
gnome / epiphany 3.23.2.1 3.23.2.1.x
gnome / epiphany 3.20.2 3.20.2.x
gnome / epiphany 3.20.5 3.20.5.x
gnome / epiphany 3.23.1.1 3.23.1.1.x
gnome / epiphany 3.23.3 3.23.3.x
gnome / epiphany 3.18.2 3.18.2.x
gnome / epiphany 3.22.5 3.22.5.x