Lucene search
+L

329 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-2775

Malware in sbrugna...

5.3CVSS6.6AI score0.03294EPSS
Exploits0References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-5974

Malware in sbrugna...

10CVSS6.9AI score0.02917EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-2483

Malware in sbrugna...

9.8CVSS6.7AI score0.04987EPSS
Exploits0References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-4135

Malware in sbrugna...

8.8CVSS6.7AI score0.02827EPSS
Exploits0References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-15818

Malware in sbrugna...

8.1CVSS8AI score0.04092EPSS
Exploits1References22
Snyk
Snyk
added 2025/09/23 12:0 a.m.3 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free via the memory management process. An attacker can execute arbitrary code or cause a crash by tricking a user into processing or loading malicious web content. This is only exploitable if the system has specific packages...

8.8CVSS7.5AI score0.00717EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-42762

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into...

5.3CVSS6.5AI score0.00501EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-11793

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary...

8.8CVSS7.2AI score0.02827EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.5 views

webkitgtk: logic issue leading to user information disclosure

A logic issue was found in WebKitGTK and WPE WebKit. This flaw allows an attacker to process maliciously crafted web content that may disclose sensitive user information...

6.5CVSS5.7AI score0.00905EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.3 views

webkitgtk: Out-of-bounds read may lead to unexpected application termination or arbitrary code execution

An out-of-bounds read flaw was found in webkitgtk that affected WebKitGTK versions before 2.28.4 and WPE WebKit versions before 2.28.4. This flaw allows a remote attacker to cause unexpected application termination or arbitrary code execution. The highest threat from this vulnerability is to...

4.3CVSS7AI score0.02686EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.3 views

webkitgtk: Use-after-free in AudioSourceProviderGStreamer leading to arbitrary code execution

A use-after-free issue was found in the AudioSourceProviderGStreamer class of WebKitGTK and WPE WebKit in versions prior to 2.30.5. Processing maliciously crafted web content may lead to arbitrary code execution. The highest threat from this vulnerability is to data confidentiality and integrity ...

8.8CVSS7.5AI score0.01792EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.9 views

webkitgtk: Processing web content may lead to arbitrary code execution

A vulnerability in WebKitGTK and WPE WebKit could allow an attacker to execute arbitrary code on a target system. The issue arises from a use-after-free flaw in memory management when processing web content. This flaw can potentially give attackers the ability to take control of affected systems...

9.8CVSS7.7AI score0.01045EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.6 views

webkitgtk: Use-after-free leading to arbitrary code execution

A use-after-free issue was found in WebKitGTK and WPE WebKit in versions prior to 2.30.6. Processing maliciously crafted web content may lead to arbitrary code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS6.9AI score0.01361EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.3 views

webkitgtk: IFrame sandboxing policy violation

A flaw was found in WebKitGTK and WPE WebKit in versions prior to 2.30.6. Maliciously crafted web content may violate the iframe sandboxing policy. The highest threat from this vulnerability is to data integrity...

6.5CVSS6.7AI score0.01408EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.2 views

webkitgtk: IFrame sandboxing policy violation

A flaw was found in WebKitGTK and WPE WebKit in versions prior to 2.30.6. Maliciously crafted web content may violate the iframe sandboxing policy. The highest threat from this vulnerability is to data integrity...

6.5CVSS7.3AI score0.01515EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.3 views

webkitgtk: limited sandbox escape via VFS syscalls

BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace. The impact...

5.3CVSS7.4AI score0.00501EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.2 views

webkitgtk: Visiting a website that frames malicious content may lead to UI spoofing.

A vulnerability was found in WebKitGTK and WPE WebKit that allows a remote attacker to conduct spoofing attacks by exploiting improper UI handling. This flaw enables attackers to create specially crafted websites that can display misleading information to users. By exploiting this vulnerability, ...

4.7CVSS5.8AI score0.00523EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.2 views

webkitgtk: Use-after-free leading to arbitrary code execution

A use-after-free issue was found in WebKitGTK and WPE WebKit in versions prior to 2.32.0. Processing maliciously crafted web content may lead to arbitrary code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.8CVSS6.9AI score0.01604EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.4 views

webkitgtk: logic issue was addressed with improved state management

A logic issue was found in WebKitGTK and WPE WebKit. This flaw allows a remote attacker to process unexpected cross-origin attacks...

8.8CVSS5.8AI score0.00632EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.3 views

webkitgtk: Improper access management to CLONE_NEWUSER and the TIOCSTI ioctl

A flaw was found in webkitgtk in versions prior to 2.28.3 and in WPE WebKit in versions prior to 2.28.3. The bubblewrap sandbox failed to properly block access to CLONENEWUSER and the TIOCSTI ioctl. CLONENEWUSER could potentially be used to confuse xdg- desktop-portal, which allows access outside...

10CVSS6.8AI score0.02917EPSS
Exploits0References5
Rows per page
Query Builder