9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.074 Low
EPSS
Percentile
94.1%
Qt qtwebengine-chromium repo reports:
Backports for 15 security bugs in Chromium:
[1505053] High CVE-2023-6345: Integer overflow in Skia
[1500856] High CVE-2023-6346: Use after free in WebAudio
[1494461] High CVE-2023-6347: Use after free in Mojo
[1501326] High CVE-2023-6702: Type Confusion in V8
[1502102] High CVE-2023-6703: Use after free in Blink
[1505708] High CVE-2023-6705: Use after free in WebRTC
[1500921] High CVE-2023-6706: Use after free in FedCM
[1513170] High CVE-2023-7024: Heap buffer overflow in WebRTC
[1501798] High CVE-2024-0222: Use after free in ANGLE
[1505009] High CVE-2024-0223: Heap buffer overflow in ANGLE
[1505086] High CVE-2024-0224: Use after free in WebAudio
[1506923] High CVE-2024-0225: Use after free in WebGPU
[1513379] High CVE-2024-0333: Insufficient data validation in Extensions
[1507412] High CVE-2024-0518: Type Confusion in V8
[1517354] High CVE-2024-0519: Out of bounds memory access in V8
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | qt6-webengine | < 6.6.1_3 | UNKNOWN |
9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.074 Low
EPSS
Percentile
94.1%