USN-3687-1 webkit2gtk vulnerabilities

🗓️ 18 Jun 2018 11:51:40Reported by GoogleType

osv

osv🔗 osv.dev

Many security issues in WebKitGTK+ could allow remote attackers to perform XSS, DoS, or code execution.

Reporter	Title	Published	Views	Family All 166
0day.today	WebKit - Use-After-Free when Resuming Generator Exploit	9 Jun 201800:00	–	zdt
0day.today	WebKit - WebAssembly Compilation Info Leak Exploit	9 Jun 201800:00	–	zdt
0day.today	WebkitGTK+ 2.20.3 - ImageBufferCairo::getImageData() Buffer Overflow Exploit	16 Aug 201800:00	–	zdt
0day.today	Safari - Proxy Object Type Confusion Exploit	14 Dec 201800:00	–	zdt
0day.today	Safari Webkit Proxy Object Type Confusion Exploit	3 Jun 201900:00	–	zdt
Gitee	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Safari	14 Sep 202518:29	–	gitee
Gitee	Exploit for CVE-2016-2434	6 Jul 202503:23	–	gitee
GithubExploit	Exploit for Incorrect Type Conversion or Cast in Redhat Enterprise_Linux_Desktop	16 Jan 201913:15	–	githubexploit
GithubExploit	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Safari	8 Aug 201814:41	–	githubexploit
Tenable Nessus	Apple iOS < 11.4 Multiple Vulnerabilities (EFAIL)	17 Apr 201900:00	–	nessus

Source	Link
ubuntu	www.ubuntu.com/security/notices/USN-3687-1
ubuntu	www.ubuntu.com/security/CVE-2018-4190
ubuntu	www.ubuntu.com/security/CVE-2018-4199
ubuntu	www.ubuntu.com/security/CVE-2018-4218
ubuntu	www.ubuntu.com/security/CVE-2018-4222
ubuntu	www.ubuntu.com/security/CVE-2018-4232
ubuntu	www.ubuntu.com/security/CVE-2018-4233
ubuntu	www.ubuntu.com/security/CVE-2018-12293

22 Apr 2026 09:47Current

6.9Medium risk

Vulners AI Score6.9

CVSS 26.8

CVSS 38.8

CVSS 3.18.8

EPSS0.89897

SSVC

WebKitGTK vulnerabilities Cross site scripting Denial of service Code execution JavaScript engines