Lucene search

[email protected]CVE-2021-41146

HistoryOct 21, 2021 - 6:15 p.m.

CVE-2021-41146

2021-10-2118:15:10

CWE-77

CWE-88

CWE-641

[email protected]

web.nvd.nist.gov

qutebrowser

cve-2021-41146

url handler

code execution

windows

linux

security vulnerability

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.9%

JSON

qutebrowser is an open source keyboard-focused browser with a minimal GUI. Starting with qutebrowser v1.7.0, the Windows installer for qutebrowser registers a qutebrowserurl: URL handler. With certain applications, opening a specially crafted qutebrowserurl:... URL can lead to execution of qutebrowser commands, which in turn allows arbitrary code execution via commands such as :spawn or :debug-pyeval. Only Windows installs where qutebrowser is registered as URL handler are affected. The issue has been fixed in qutebrowser v2.4.0. The fix also adds additional hardening for potential similar issues on Linux (by adding the new --untrusted-args flag to the .desktop file), though no such vulnerabilities are known.

Affected configurations

Vulners

NVD

Node

qutebrowserqutebrowserRange1.7.0–2.4.0

VendorProductVersionCPE
qutebrowserqutebrowser*cpe:2.3:a:qutebrowser:qutebrowser:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qutebrowser	qutebrowser	*	cpe:2.3:a:qutebrowser:qutebrowser::::::::

CNA Affected

[
  {
    "product": "qutebrowser",
    "vendor": "qutebrowser",
    "versions": [
      {
        "status": "affected",
        "version": ">= 1.7.0, < 2.4.0"
      }
    ]
  }
]