Lucene search
K

15 matches found

OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2017:2933-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.08059EPSS
Exploits53References7
OPENSUSE Linux
OPENSUSE Linux
added 2017/11/10 6:22 p.m.59 views

Security update for webkit2gtk3 (important)

This update for webkit2gtk3 to version 2.18.0 fixes the following issues: These security issues were fixed: - CVE-2017-7039: An issue was fixed that allowed remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted web site...

7.5CVSS8.6AI score0.08059EPSS
Exploits53References4
Tenable Nessus
Tenable Nessus
added 2017/11/07 12:0 a.m.34 views

SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2017:2933-1)

This update for webkit2gtk3 to version 2.18.0 fixes the following issues: These security issues were fixed : - CVE-2017-7039: An issue was fixed that allowed remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted website...

8.8CVSS7.2AI score0.08059EPSS
Exploits53References85
Tenable Nessus
Tenable Nessus
added 2017/08/11 12:0 a.m.45 views

Fedora 24 : webkitgtk4 (2017-9d572cc64a)

This update addresses the following vulnerabilities : - CVE-2017-7018, CVE-2017-7030, CVE-2017-7034, CVE-2017-7037, CVE-2017-7039, CVE-2017-7046, CVE-2017-7048, CVE-2017-7055, CVE-2017-7056, CVE-2017-7061, CVE-2017-7064 Additional fixes : - Fix rendering of spin buttons with GTK+ = 3.20 when the...

8.8CVSS6.5AI score0.08059EPSS
Exploits29References12
Tenable Nessus
Tenable Nessus
added 2017/07/31 12:0 a.m.38 views

Fedora 25 : webkitgtk4 (2017-73d6a0dfbb)

This update addresses the following vulnerabilities : - CVE-2017-7018, CVE-2017-7030, CVE-2017-7034, CVE-2017-7037, CVE-2017-7039, CVE-2017-7046, CVE-2017-7048, CVE-2017-7055, CVE-2017-7056, CVE-2017-7061, CVE-2017-7064 Additional fixes : - Fix rendering of spin buttons with GTK+ = 3.20 when the...

8.8CVSS6.5AI score0.08059EPSS
Exploits29References12
Tenable Nessus
Tenable Nessus
added 2017/07/27 12:0 a.m.33 views

iTunes < 12.6.2 Multiple Vulnerabilities

Binary data 700168.prm...

9.3CVSS7.6AI score0.095EPSS
Exploits49References24
seebug.org
seebug.org
added 2017/07/27 12:0 a.m.44 views

WebKit: JSC: UXSS via JSObject::putInlineSlow and JSValue::putToPrimitive(CVE-2017-7037)

JSObject::putInlineSlow and JSValue::putToPrimitive use getPrototypeDirect instead of getPrototype to get an object's prototype. So JSDOMWindow::getPrototype which checks the Same Origin Policy is not called. The PoC shows to call a setter of another origin's object. PoC 1 -...

6.8CVSS8.2AI score0.07516EPSS
Exploits3
Circl
Circl
added 2017/07/25 12:0 a.m.12 views

CVE-2017-7037

creationtimestamp| type| source ---|---|--- 2017-07-25 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/42378...

8.8CVSS6.7AI score0.07516EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2017/07/25 12:0 a.m.47 views

Apple iOS < 10.3.3 Multiple Vulnerabilities

Binary data appleios1033check.nbin...

10CVSS7.7AI score0.47537EPSS
Exploits57References49
Packet Storm
Packet Storm
added 2017/07/25 12:0 a.m.46 views

WebKit JSC JSObject::putInlineSlow / JSValue::putToPrimitive XSS

WebKit: JSC: UXSS via JSObject::putInlineSlow and JSValue::putToPrimitive CVE-2017-7037 JSObject::putInlineSlow and JSValue::putToPrimitive use getPrototypeDirect instead of getPrototype to get an object's prototype. So JSDOMWindow::getPrototype which checks the Same Origin Policy is not called...

6.8CVSS7.6AI score0.07516EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2017/07/25 12:0 a.m.67 views

Apple iTunes < 12.6.2 Multiple Vulnerabilities (credentialed check)

The version of Apple iTunes installed on the remote Windows host is prior to 12.6.2. It is, therefore, affected by multiple vulnerabilities : - Multiple out-of-bounds read errors exist in the libxml2 component due to improper handling of specially crafted XML documents. An unauthenticated, remote...

9.3CVSS7.5AI score0.095EPSS
Exploits49References24
Tenable Nessus
Tenable Nessus
added 2017/07/24 12:0 a.m.53 views

macOS : Apple Safari < 10.1.2 Multiple Vulnerabilities

The version of Apple Safari installed on the remote macOS or Mac OS X host is prior to 10.1.2. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the WebKit component due to improper handling of SVG filters. An unauthenticated, remote...

9.3CVSS6.9AI score0.095EPSS
Exploits50References27
CVE
CVE
added 2017/07/20 4:0 p.m.117 views

CVE-2017-7037

CVE-2017-7037 affects WebKit in multiple Apple platforms (iOS before 10.3.3, Safari before 10.1.2, tvOS before 10.2.2, iCloud/iTunes on Windows). Root issue: memory handling/processing of malicious web content in WebKit could allow arbitrary code execution or cross-origin data leakage when handli...

8.8CVSS8.1AI score0.07516EPSS
Exploits3References9Affected Software3
Cvelist
Cvelist
added 2017/07/20 4:0 p.m.26 views

CVE-2017-7037

An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote...

8.2AI score0.07516EPSS
Exploits3References9
Apple
Apple
added 2017/07/19 12:0 a.m.47 views

About the security content of iCloud for Windows 6.2.2

About the security content of iCloud for Windows 6.2.2 This document describes the security content of iCloud for Windows 6.2.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...

9.3CVSS0.3AI score0.095EPSS
Exploits49References1Affected Software1
Rows per page
Query Builder