Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
•added 2025/08/25 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2018-4233

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTun...

8.8CVSS8.5AI score0.53772EPSS
Exploits12References2
OpenVAS
OpenVAS
•added 2021/06/09 12:0 a.m.•29 views

SUSE: Security Advisory (SUSE-SU-2018:2075-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.2AI score0.69016EPSS
Exploits28References2
0day.today
0day.today
•added 2019/06/03 12:0 a.m.•1397 views

Safari Webkit Proxy Object Type Confusion Exploit

This Metasploit module exploits a type confusion bug in the Javascript Proxy object in WebKit. The DFG JIT does not take into account that, through the use of a Proxy, it is possible to run arbitrary JS code during the execution of a CreateThis operation. This makes it possible to change the...

9.3CVSS0.5AI score0.53772EPSS
Exploits16
Metasploit
Metasploit
•added 2019/06/02 2:19 a.m.•108 views

Safari Webkit Proxy Object Type Confusion

This module exploits a type confusion bug in the Javascript Proxy object in WebKit. The DFG JIT does not take into account that, through the use of a Proxy, it is possible to run arbitrary JS code during the execution of a CreateThis operation. This makes it possible to change the structure of e....

8.8CVSS8.4AI score0.53772EPSS
Exploits16
Packet Storm
Packet Storm
•added 2019/06/02 12:0 a.m.•551 views

Safari Webkit Proxy Object Type Confusion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Safari Webkit Proxy Object Type Confusion', 'Description' = %q This module exploits a type confusion bug in the Javascript Proxy object in WebKit...

9.3CVSS0.2AI score0.53772EPSS
Exploits16
Tenable Nessus
Tenable Nessus
•added 2019/01/03 12:0 a.m.•42 views

Fedora 28 : webkit2gtk3 (2018-118b9abf99)

This update addresses the following vulnerabilities : - CVE-2018-4190, CVE-2018-4199, CVE-2018-4218, CVE-2018-4222, CVE-2018-4232, CVE-2018-4233, CVE-2018-4246, CVE-2018-11646. Additional fixes : - Fix installation directory of API documentation. - Disable Gigacage if mmap fails to allocate in...

8.8CVSS6.9AI score0.69016EPSS
Exploits28References9
Tenable Nessus
Tenable Nessus
•added 2019/01/02 12:0 a.m.•38 views

SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2018:2075-1)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues: These security issues were fixed : - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

8.8CVSS7.6AI score0.69016EPSS
Exploits28References17
Check Point Advisories
Check Point Advisories
•added 2018/12/31 12:0 a.m.•3 views

Apple WebKit Memory Corruption (CVE-2018-4233)

A remote code execution vulnerability exists in Apple WebKit. The vulnerability is due to a memory corruption when handling of objects in javascript JIT. A remote attacker could exploit the vulnerability by enticing the target user to open a specially crafted js webpage. Successful exploitation...

6.8CVSS2.9AI score0.53772EPSS
Exploits12
0day.today
0day.today
•added 2018/12/14 12:0 a.m.•116 views

Safari - Proxy Object Type Confusion Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Safari Proxy Object Type Confusion', 'Description' = %q This module exploits a type confusion bug in the Javascript Proxy object in WebKit. The D...

9.3CVSS0.5AI score0.53772EPSS
Exploits12
Exploit DB
Exploit DB
•added 2018/12/14 12:0 a.m.•85 views

Safari - Proxy Object Type Confusion (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Safari Proxy Object Type Confusion', 'Description' = %q This module exploits a type confusion bug in the Javascript Proxy object in WebKit. The D...

9.3CVSS8.3AI score0.53772EPSS
Exploits12
Packet Storm
Packet Storm
•added 2018/12/13 12:0 a.m.•101 views

Safari Proxy Object Type Confusion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Safari Proxy Object Type Confusion', 'Description' = %q This module exploits a type confusion bug in the Javascript Proxy object in WebKit. The D...

6.8CVSS0.4AI score0.53772EPSS
Exploits12
Metasploit
Metasploit
•added 2018/11/15 12:44 a.m.•51 views

Safari Proxy Object Type Confusion

This module exploits a type confusion bug in the Javascript Proxy object in WebKit. The DFG JIT does not take into account that, through the use of a Proxy, it is possible to run arbitrary JS code during the execution of a CreateThis operation. This makes it possible to change the structure of e....

8.8CVSS8.4AI score0.53772EPSS
Exploits12
OPENSUSE Linux
OPENSUSE Linux
•added 2018/08/10 3:8 a.m.•63 views

Security update for webkit2gtk3 (moderate)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues: These security issues were fixed: - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

6.8CVSS6.6AI score0.69016EPSS
Exploits28References2
Tenable Nessus
Tenable Nessus
•added 2018/08/10 12:0 a.m.•51 views

openSUSE Security Update : webkit2gtk3 (openSUSE-2018-845)

This update for webkit2gtk3 to version 2.20.3 fixes the following issues : These security issues were fixed : - CVE-2018-4190: An unspecified issue allowed remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch bsc1097693. - CVE-2018-4199: An...

8.8CVSS7.5AI score0.69016EPSS
Exploits28References9
Tenable Nessus
Tenable Nessus
•added 2018/07/02 12:0 a.m.•52 views

Fedora 27 : webkitgtk4 (2018-aac3ca8936)

This update addresses the following vulnerabilities : - CVE-2018-4190, CVE-2018-4199, CVE-2018-4218, CVE-2018-4222, CVE-2018-4232, CVE-2018-4233, CVE-2018-4246, CVE-2018-11646. Additional fixes : - Fix installation directory of API documentation. - Disable Gigacage if mmap fails to allocate in...

8.8CVSS6.9AI score0.69016EPSS
Exploits28References9
Circl
Circl
•added 2018/06/19 4:25 a.m.•21 views

CVE-2018-4233

creationtimestamp| type| source ---|---|--- 2018-06-19 04:25:59+00:00| published-proof-of-concept| https://t.me/br0wsec/46 2018-06-19 07:51:57+00:00| published-proof-of-concept| https://t.me/antichat/1610 2018-12-13 19:58:13+00:00| seen|...

8.8CVSS8.1AI score0.53772EPSS
Exploits12References9
Vulnrichment
Vulnrichment
•added 2018/06/08 6:0 p.m.•22 views

CVE-2018-4233

An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit"...

8.1AI score0.53772EPSS
Exploits12References11
Cvelist
Cvelist
•added 2018/06/08 6:0 p.m.•27 views

CVE-2018-4233

An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit"...

9.2AI score0.53772EPSS
Exploits12References11
CVE
CVE
•added 2018/06/08 6:0 p.m.•196 views

CVE-2018-4233

CVE-2018-4233 concerns a memory corruption/remote code execution bug in Apple’s WebKit (Safari/WebKit engine). The issue arises from a type confusion in the JavaScript JIT, notably involving the Proxy object, allowing an attacker to craft a page that triggers code execution. Affected products inc...

8.8CVSS8.8AI score0.53772EPSS
Exploits12References11Affected Software4
Tenable Nessus
Tenable Nessus
•added 2018/06/06 12:0 a.m.•54 views

Apple iTunes < 12.7.5 Multiple Vulnerabilities (credentialed check)

The version of Apple iTunes installed on the remote Windows host is prior to 12.7.5. It is, therefore, affected by multiple vulnerabilities as referenced in the HT208852 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

8.8CVSS7AI score0.53772EPSS
Exploits25References18
Rows per page
Query Builder