EIP-2026-103460

PRE-CVE

Epiphany 3.28.2.1 - Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103460. PoCs published by Dhiraj Mishra.

AI-analyzed exploit summary This PoC demonstrates a denial of service (DoS) vulnerability in GNOME Web (Epiphany) through 3.28.2.1. The exploit triggers a segmentation fault by using JavaScript to open a window with a NULL URL, leading to an application crash.

Description

Epiphany 3.28.2.1 - Denial of Service

Exploits (1)

exploitdb WORKING POC

by Dhiraj Mishra · textdosmultiple

https://www.exploit-db.com/exploits/44821

View Code ZIP pw:eip

This PoC demonstrates a denial of service (DoS) vulnerability in GNOME Web (Epiphany) through 3.28.2.1. The exploit triggers a segmentation fault by using JavaScript to open a window with a NULL URL, leading to an application crash.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: GNOME Web (Epiphany) through 3.28.2.1

No auth needed

Prerequisites: A target system running GNOME Web (Epiphany) through 3.28.2.1 · Ability to execute JavaScript in the context of the browser

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026