CVE-2025-3839
published 2026-01-23CVE-2025-3839: A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction. This design can be misused…
PriorityP347high8CVSS 3.1
AVNACHPRNUIRSCCHIHAN
EPSS
0.38%
29.9th percentile
A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction. This design can be misused to exploit vulnerabilities within those handlers, making them appear remotely exploitable. The browser fails to properly warn or gate this action, resulting in potential code execution on the client device via trusted UI behavior.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | epiphany-browser | < epiphany-browser 48.1-1 (forky) | epiphany-browser 48.1-1 (forky) |
CVSS provenance
nvdv3.18.0HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N
osv8.0HIGH
vendor_debian8.0HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2025-3839: epiphany-browser - A flaw was found in Epiphany, a tool that allows websites to open external URL h...
vendor_debian·2025·CVSS 8.0
CVE-2025-3839 [HIGH] CVE-2025-3839: epiphany-browser - A flaw was found in Epiphany, a tool that allows websites to open external URL h...
A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction. This design can be misused to exploit vulnerabilities within those handlers, making them appear remotely exploitable. The browser fails to properly warn or gate this action, resulting in potential code execution on the client device via trusted UI behavior.
Scope: local
bookworm: open
bullseye: open
forky: resolved (fixed in 48.1-1)
sid: resolved (fixed in 48.1-1)
trixie: resolved (fixed in 48.1-1)
GHSA
GHSA-h95f-v923-pcr4: A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction
ghsa_unreviewed·2026-01-23
CVE-2025-3839 [HIGH] CWE-356 GHSA-h95f-v923-pcr4: A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction
A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction. This design can be misused to exploit vulnerabilities within those handlers, making them appear remotely exploitable. The browser fails to properly warn or gate this action, resulting in potential code execution on the client device via trusted UI behavior.
OSV
CVE-2025-3839: A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction
osv·2026-01-23·CVSS 8.0
CVE-2025-3839 [HIGH] CVE-2025-3839: A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction
A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction. This design can be misused to exploit vulnerabilities within those handlers, making them appear remotely exploitable. The browser fails to properly warn or gate this action, resulting in potential code execution on the client device via trusted UI behavior.
No detection rules found.
No public exploits indexed.
Wiz
CVE-2025-3839 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.0
CVE-2025-3839 [HIGH] CVE-2025-3839 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-3839 :
Linux Debian vulnerability analysis and mitigation
A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction. This design can be misused to exploit vulnerabilities within those handlers, making them appear remotely exploitable. The browser fails to properly warn or gate this action, resulting in potential code execution on the client device via trusted UI behavior.
Source : NVD
## 8
Score
Published January 23, 2026
Severity HIGH
CNA Score 8.0
Affected Technologies
Linux Debian
Linux Fedora
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 4.4
Exploitation Probability (EPSS) N/A
Affected packages
Bugzilla
CVE-2022-49541 kernel: cifs: fix potential double free during failed mount
bugzilla·2025-02-26·CVSS 7.8
CVE-2022-49541 [HIGH] CVE-2022-49541 kernel: cifs: fix potential double free during failed mount
CVE-2022-49541 kernel: cifs: fix potential double free during failed mount
In the Linux kernel, the following vulnerability has been resolved:
cifs: fix potential double free during failed mount
RHBZ: https://bugzilla.redhat.com/show_bug.cgi?id=2088799
Discussion:
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025022614-CVE-2022-49541-7460@gregkh/T
---
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025022614-CVE-2022-49541-7460@gregkh/T
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions
Via RHSA-2025:3839 https://access.redhat.com/errata/RHSA-2025:3839
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 9.0 Update Services for SAP Solution
2026-01-23
Published