3 matches found
CVE-2026-20691
A flaw was found in WebKitGTK. A maliciously crafted web page can cause an authorization issue due to improper state management and may be able to fingerprint the user. Mitigation Do not visit untrusted web pages or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the...
DEBIAN-CVE-2026-20691
An authorization issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. A maliciously crafted webpage may be able to fingerprint the user...
CVE-2026-28871
CVE-2026-28871 is a logic issue that can enable cross-site scripting when visiting a malicious website. The vulnerability is fixed in Apple platforms: Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, and macOS Tahoe 26.4. Related Nessus/OpenVAS entries confirm affected WebKit/...