Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-9802

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10...

8.8CVSS7.1AI score0.08207EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2020:1992-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.4AI score0.77246EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2020:2069-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.77246EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2020:1990-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.77246EPSS
Exploits5References4
GoogleProjectZero
GoogleProjectZero
added 2020/09/01 12:0 a.m.211 views

JITSploitation II: Getting Read/Write

Posted by Samuel Groß, Project Zero This three-part series highlights the technical challenges involved in finding and exploiting JavaScript engine vulnerabilities in modern web browsers and evaluates current exploit mitigation technologies. The exploited vulnerability, CVE-2020-9802, was fixed i...

8.8CVSS9.4AI score0.08207EPSS
Exploits4
GoogleProjectZero
GoogleProjectZero
added 2020/09/01 12:0 a.m.78 views

JITSploitation III: Subverting Control Flow

Posted by Samuel Groß, Project Zero This three-part series highlights the technical challenges involved in finding and exploiting JavaScript engine vulnerabilities in modern web browsers and evaluates current exploit mitigation technologies. The exploited vulnerability, CVE-2020-9802, was fixed i...

8.8CVSS9.4AI score0.08207EPSS
Exploits4
GoogleProjectZero
GoogleProjectZero
added 2020/09/01 12:0 a.m.63 views

JITSploitation I: A JIT Bug

By Samuel Groß, Project Zero This three-part series highlights the technical challenges involved in finding and exploiting JavaScript engine vulnerabilities in modern web browsers and evaluates current exploit mitigation technologies. The exploited vulnerability, CVE-2020-9802, was fixed in iOS...

8.8CVSS9.5AI score0.08207EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2020/07/30 12:0 a.m.74 views

SUSE SLES12 Security Update : webkit2gtk3 (SUSE-SU-2020:2069-1)

This update for webkit2gtk3 fixes the following issues : Update to version 2.28.3 bsc1173998 : + Enable kinetic scrolling with async scrolling. + Fix web process hangs on large GitHub pages. + Bubblewrap sandbox should not attempt to bind empty paths. + Fix threading issues in the media player. +...

10CVSS6.8AI score0.77246EPSS
Exploits5References18
Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.52 views

GLSA-202007-11 : WebKitGTK+: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202007-11 WebKitGTK+: Multiple vulnerabilities Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for...

10CVSS6.8AI score0.77246EPSS
Exploits5References9
Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.239 views

openSUSE Security Update : webkit2gtk3 (openSUSE-2020-1064)

This update for webkit2gtk3 fixes the following issues : - Update to version 2.28.3 bsc1173998 : + Enable kinetic scrolling with async scrolling. + Fix web process hangs on large GitHub pages. + Bubblewrap sandbox should not attempt to bind empty paths. + Fix threading issues in the media player....

10CVSS6.8AI score0.77246EPSS
Exploits5References9
OpenVAS
OpenVAS
added 2020/07/27 12:0 a.m.35 views

openSUSE: Security Advisory for webkit2gtk3 (openSUSE-SU-2020:1064-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS8.8AI score0.77246EPSS
Exploits5References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/07/26 12:0 a.m.75 views

Security update for webkit2gtk3 (important)

openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2020:1064-1 Rating: important References: 1173998 Cross-References: CVE-2020-13753 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 Affected Products: openSUSE...

10CVSS8.4AI score0.77246EPSS
Exploits5References1
Tenable Nessus
Tenable Nessus
added 2020/07/22 12:0 a.m.62 views

SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2020:1990-1)

This update for webkit2gtk3 fixes the following issues : Update to version 2.28.3 bsc1173998 : + Enable kinetic scrolling with async scrolling. + Fix web process hangs on large GitHub pages. + Bubblewrap sandbox should not attempt to bind empty paths. + Fix threading issues in the media player. +...

10CVSS6.8AI score0.77246EPSS
Exploits5References18
Tenable Nessus
Tenable Nessus
added 2020/07/22 12:0 a.m.43 views

SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2020:1992-1)

This update for webkit2gtk3 fixes the following issues : Update to version 2.28.3 bsc1173998 : + Enable kinetic scrolling with async scrolling. + Fix web process hangs on large GitHub pages. + Bubblewrap sandbox should not attempt to bind empty paths. + Fix threading issues in the media player. +...

10CVSS6.8AI score0.77246EPSS
Exploits5References18
ArchLinux
ArchLinux
added 2020/07/14 12:0 a.m.90 views

[ASA-202007-1] webkit2gtk: multiple issues

Arch Linux Security Advisory ASA-202007-1 ========================================= Severity: Critical Date : 2020-07-14 CVE-ID : CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 CVE-2020-13753 Package : webkit2gtk Type : multiple issues Remote : Y...

10CVSS0.6AI score0.77246EPSS
Exploits5References18
OSV
OSV
added 2020/06/09 5:15 p.m.9 views

CVE-2020-9802

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code...

8.8CVSS8.9AI score
Exploits0References7
Vulnrichment
Vulnrichment
added 2020/06/09 4:7 p.m.8 views

CVE-2020-9802

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code...

8.5AI score0.08207EPSS
Exploits2References7
CVE
CVE
added 2020/06/09 4:7 p.m.547 views

CVE-2020-9802

CVE-2020-9802 is a memory-related/logic issue in WebKit-based components where processing maliciously crafted web content may lead to arbitrary code execution. The initial Apple advisory links the vulnerability to multiple products and states that the issue is fixed in Apple iOS 13.5 and iPadOS 1...

8.8CVSS8.9AI score0.08207EPSS
Exploits2References7Affected Software7
Apple
Apple
added 2020/05/27 12:42 p.m.204 views

About the security content of Safari 13.1.1 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS1.3AI score0.77246EPSS
Exploits6Affected Software1
Apple
Apple
added 2020/05/26 11:21 a.m.121 views

About the security content of iTunes 12.10.7 for Windows - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS1.1AI score0.77246EPSS
Exploits5Affected Software1
Rows per page
Query Builder