Lucene search
+L

6 matches found

RedHat Linux
RedHat Linux
added 2022/05/10 1:27 p.m.81 views

Moderate: Red Hat Security Advisory: webkit2gtk3 security, bug fix, and enhancement update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

9.3CVSS7.4AI score0.16342EPSS
Exploits4References34
OSV
OSV
added 2022/05/10 6:24 a.m.46 views

ALSA-2022:1777 Moderate: webkit2gtk3 security, bug fix, and enhancement update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. The following packages have been upgraded to a later upstream version: webkit2gtk3 2.34.6. BZ1985042 Security Fixes: webkitgtk: maliciously crafted web content may lead to arbitrary code execution due to use...

9.3CVSS9.3AI score0.16342EPSS
Exploits4References31
OSV
OSV
added 2022/05/10 6:24 a.m.48 views

RLSA-2022:1777 Moderate: webkit2gtk3 security, bug fix, and enhancement update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. The following packages have been upgraded to a later upstream version: webkit2gtk3 2.34.6. BZ1985042 Security Fixes: webkitgtk: maliciously crafted web content may lead to arbitrary code execution due to use...

8.8CVSS9.3AI score0.16342EPSS
Exploits4References33
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.177 views

CentOS 8 : webkit2gtk3 (CESA-2022:1777)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:1777 advisory. - webkitgtk: Use-after-free leading to arbitrary code execution CVE-2021-30809 - webkitgtk: Type confusion issue leading to arbitrary code execution...

9.3CVSS7.4AI score0.16342EPSS
Exploits4References31
RedhatCVE
RedhatCVE
added 2022/01/10 2:25 p.m.44 views

CVE-2021-30897

A flaw was found in the resource timing API specification and its implementation in WebKitGTK. A malicious web site could use this flaw to trigger a cross-domain data exfiltration...

6.5CVSS2.1AI score0.01661EPSS
Exploits0References3
CVE
CVE
added 2021/08/24 6:50 p.m.185 views

CVE-2021-30897

CVE-2021-30897 : The issue is in the resource timing API specification; the updated spec was implemented. It is fixed in macOS Monterey 12.0.1. A malicious site could exfiltrate cross-origin data via resource timing timing data. The connected advisories (MiracleLinux/Alibaba/Tencent/Ten able) rei...

6.5CVSS7.1AI score0.01661EPSS
Exploits0References3Affected Software4
Rows per page
Query Builder