This page lists publicly disclosed CVE vulnerabilities affecting netsurf-browser netsurf (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-45663 | An issue in NetSurf v3.11 causes the application to read uninitialized heap memory when creating a dom_event structure. | [email protected] | 6.5 | 0.30% | 2025-11-03 | 2026-06-17 |
| CVE-2025-29699 | NetSurf 3.11 is vulnerable to Use After Free in dom_node_set_text_content function. | [email protected] | 6.5 | 0.27% | 2025-11-03 | 2026-06-17 |
| CVE-2024-51317 | An issue in NetSurf v.3.11 allows a remote attacker to execute arbitrary code via the dom_node_normalize function | [email protected] | 6.5 | 0.36% | 2025-11-03 | 2026-06-17 |
| CVE-2012-0844 | Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable cookie jar. | [email protected] | 5.5 | 0.42% | 2020-02-21 | 2026-06-16 |