Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14031 matches found

Fedora
Fedoraadded 2026/04/28 1:0 a.m.5 views

[SECURITY] Fedora 43 Update: chromium-147.0.7727.116-1.fc43

Chromium is an open-source web browser, powered by WebKit Blink...

9.6CVSS5.1AI score0.00128EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2026/04/27 2:0 a.m.6 views

webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling...

6.5CVSS7.5AI score0.00074EPSS
Exploits0References5
Oracle linux
Oracle linuxadded 2026/04/27 12:0 a.m.5 views

webkit2gtk3 security update

2.52.3-1 - Update to 2.52.3...

7.5CVSS5.8AI score0.01376EPSS
Exploits2
Fedora
Fedoraadded 2026/04/25 1:58 a.m.3 views

[SECURITY] Fedora 44 Update: chromium-147.0.7727.101-1.fc44

Chromium is an open-source web browser, powered by WebKit Blink...

9.8CVSS8.2AI score0.00161EPSS
Exploits0
Fedora
Fedoraadded 2026/04/25 1:57 a.m.1 views

[SECURITY] Fedora 44 Update: cef-146.0.11^chromium146.0.7680.177-2.fc44

CEF is an embeddable build of Chromium, powered by WebKit Blink...

9.6CVSS8AI score0.00915EPSS
Exploits1
SUSE CVE
SUSE CVEadded 2026/04/25 1:44 a.m.3 views

SUSE CVE-2025-66286

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP request...

4.7CVSS5.4AI score0.00033EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/24 12:0 a.m.7 views

AlmaLinux 9 : webkit2gtk3 (ALSA-2026:9692)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:9692 advisory. webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash CVE-2025-43213 webkitgtk: Processing maliciously crafted web...

7.5CVSS5.2AI score0.01376EPSS
Exploits2References20
EUVD
EUVDadded 2026/04/23 3:38 p.m.2 views

EUVD-2025-209565

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP request...

4.7CVSS5.8AI score0.00033EPSS
Exploits0References4
NVD
NVDadded 2026/04/23 1:16 p.m.4 views

CVE-2025-66286

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP request...

4.7CVSS0.00033EPSS
Exploits0References3
OSV
OSVadded 2026/04/23 1:16 p.m.2 views

UBUNTU-CVE-2025-66286

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP request...

4.7CVSS5.8AI score0.00033EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/04/23 1:16 p.m.1 views

CVE-2025-66286

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP request...

4.7CVSS5.8AI score0.00033EPSS
Exploits0References1
CVE
CVEadded 2026/04/23 12:33 p.m.11 views

CVE-2025-66286

Technical details about CVE-2025-66286 are not publicly available in the provided documents. Monitor for updates from Red Hat, WebKitGTK, and WPE WebKit for affected products, versions, impact, and fixes.

4.7CVSS5.8AI score0.00033EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/23 12:33 p.m.31 views

CVE-2025-66286 Webkitgtk: authorization bypass through webpage::send-request signal handler

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP request...

4.7CVSS0.00033EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/04/23 12:33 p.m.2 views

CVE-2025-66286

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP request...

4.7CVSS5.8AI score0.00033EPSS
Exploits0References4
Fedora
Fedoraadded 2026/04/23 12:58 a.m.3 views

[SECURITY] Fedora 42 Update: chromium-147.0.7727.101-1.fc42

Chromium is an open-source web browser, powered by WebKit Blink...

9.8CVSS8.2AI score0.00161EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/04/23 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-66286

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications...

4.7CVSS5.8AI score0.00033EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/04/23 12:0 a.m.3 views

PT-2026-34659

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP request...

4.7CVSS5.8AI score0.00033EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2026/04/22 11:49 a.m.4 views

webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling...

4.3CVSS7.2AI score0.00083EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/04/22 11:49 a.m.5 views

webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling...

6.5CVSS5.7AI score0.00719EPSS
Exploits0References5
Fedora
Fedoraadded 2026/04/16 1:9 a.m.3 views

[SECURITY] Fedora 42 Update: cef-146.0.11^chromium146.0.7680.177-2.fc42

CEF is an embeddable build of Chromium, powered by WebKit Blink...

9.6CVSS6AI score0.00915EPSS
Exploits0
Rows per page
Query Builder