Lucene search
K

12 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2018:2075-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.2AI score0.69016EPSS
Exploits28References2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.42 views

Fedora 28 : webkit2gtk3 (2018-118b9abf99)

This update addresses the following vulnerabilities : - CVE-2018-4190, CVE-2018-4199, CVE-2018-4218, CVE-2018-4222, CVE-2018-4232, CVE-2018-4233, CVE-2018-4246, CVE-2018-11646. Additional fixes : - Fix installation directory of API documentation. - Disable Gigacage if mmap fails to allocate in...

8.8CVSS6.9AI score0.69016EPSS
Exploits28References9
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.38 views

SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2018:2075-1)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues: These security issues were fixed : - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

8.8CVSS7.6AI score0.69016EPSS
Exploits28References17
GoogleProjectZero
GoogleProjectZero
added 2018/08/16 12:0 a.m.39 views

The Problems and Promise of WebAssembly

Posted by Natalie Silvanovich, Project Zero WebAssembly is a format that allows code written in assembly-like instructions to be run from JavaScript. It has recently been implemented in all four major browsers. We reviewed each browser’s WebAssembly implementation and found three vulnerabilities...

8.8CVSS8.9AI score0.20024EPSS
Exploits10
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/10 3:8 a.m.63 views

Security update for webkit2gtk3 (moderate)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues: These security issues were fixed: - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

6.8CVSS6.6AI score0.69016EPSS
Exploits28References2
Tenable Nessus
Tenable Nessus
added 2018/08/10 12:0 a.m.51 views

openSUSE Security Update : webkit2gtk3 (openSUSE-2018-845)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues : These security issues were fixed : - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

8.8CVSS7.5AI score0.69016EPSS
Exploits28References9
Tenable Nessus
Tenable Nessus
added 2018/07/02 12:0 a.m.52 views

Fedora 27 : webkitgtk4 (2018-aac3ca8936)

This update addresses the following vulnerabilities : - CVE-2018-4190, CVE-2018-4199, CVE-2018-4218, CVE-2018-4222, CVE-2018-4232, CVE-2018-4233, CVE-2018-4246, CVE-2018-11646. Additional fixes : - Fix installation directory of API documentation. - Disable Gigacage if mmap fails to allocate in...

8.8CVSS6.9AI score0.69016EPSS
Exploits28References9
OSV
OSV
added 2018/06/08 6:29 p.m.12 views

CVE-2018-4222

An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit"...

8.8CVSS8.4AI score
Exploits0References11
CVE
CVE
added 2018/06/08 6:0 p.m.137 views

CVE-2018-4222

CVE-2018-4222 affects WebKit components in multiple Apple platforms (iOS 11.4, Safari 11.1.1, iCloud/Win apps, tvOS/watchOS).根本原因:WebAssembly编译阶段的 getWasmBufferFromValue 的边界读取,WebKit 按错将数组缓冲区指针嵌入偏移,从而在读取表时产生越界。受影响的实现关键在于 WebAssembly 模块读取与内存/表的管理,导致在构造或执行 WebAssembly 模块时可能触发任意代码执行的潜在风险。公开的利用信息在 Pr...

8.8CVSS8AI score0.10508EPSS
Exploits3References11Affected Software4
Cvelist
Cvelist
added 2018/06/08 6:0 p.m.27 views

CVE-2018-4222

An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit"...

8.6AI score0.10508EPSS
Exploits3References11
Tenable Nessus
Tenable Nessus
added 2018/06/06 12:0 a.m.54 views

Apple iTunes < 12.7.5 Multiple Vulnerabilities (credentialed check)

The version of Apple iTunes installed on the remote Windows host is prior to 12.7.5. It is, therefore, affected by multiple vulnerabilities as referenced in the HT208852 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

8.8CVSS7AI score0.53772EPSS
Exploits25References18
Kaspersky
Kaspersky
added 2018/05/29 12:0 a.m.64 views

KLA11282 Multiple vulnerabilities in Apple iTunes

Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface and obtain sensitive information. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in CoreGraphics...

8.8CVSS9.2AI score0.53772EPSS
Exploits25References4
Rows per page
Query Builder