Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Epiphany 2.28 and 2.29, when WebKit and LibSoup are used, unconditionally displays a closed-lock icon for any URL beginning with the https: substring, without any warning to the user, which allows man-in-the-middle attackers to spoof arbitrary https web sites via a crafted X.509 server certificate.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
gnome Epiphany未明站点欺骗漏洞
Vulnerability Description
Epiphany 基于Mozilla的Gecko排版引擎,是GNOME桌面下的主力浏览器。 Epiphany 2.28和2.29版本在WebKit和LibSoup启用时,将会无条件地为任何以https:子串开头的URL显示闭锁图标,而不会给用户警告提示。中间人攻击者可以借助特制的X.509服务器证书欺骗任意https web站点。
CVSS Information
N/A
Vulnerability Type
N/A