Lucene search
+L

23 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2022-22594

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3,...

6.5CVSS6.8AI score0.00815EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/17 12:0 a.m.42 views

SUSE SLES12 Security Update : webkit2gtk3 (SUSE-SU-2022:1677-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1677-1 advisory. - A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS...

8.8CVSS8.2AI score0.03668EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2022/05/17 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:1677-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.8AI score0.03668EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/05/10 1:27 p.m.78 views

Moderate: Red Hat Security Advisory: webkit2gtk3 security, bug fix, and enhancement update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

9.3CVSS7.4AI score0.16342EPSS
Exploits4References34
OSV
OSV
added 2022/05/10 6:24 a.m.48 views

RLSA-2022:1777 Moderate: webkit2gtk3 security, bug fix, and enhancement update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. The following packages have been upgraded to a later upstream version: webkit2gtk3 2.34.6. BZ1985042 Security Fixes: webkitgtk: maliciously crafted web content may lead to arbitrary code execution due to use...

8.8CVSS9.3AI score0.16342EPSS
Exploits4References33
OSV
OSV
added 2022/05/10 6:24 a.m.46 views

ALSA-2022:1777 Moderate: webkit2gtk3 security, bug fix, and enhancement update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. The following packages have been upgraded to a later upstream version: webkit2gtk3 2.34.6. BZ1985042 Security Fixes: webkitgtk: maliciously crafted web content may lead to arbitrary code execution due to use...

9.3CVSS9.3AI score0.16342EPSS
Exploits4References31
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.175 views

CentOS 8 : webkit2gtk3 (CESA-2022:1777)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:1777 advisory. - webkitgtk: Use-after-free leading to arbitrary code execution CVE-2021-30809 - webkitgtk: Type confusion issue leading to arbitrary code execution...

9.3CVSS7.4AI score0.16342EPSS
Exploits4References31
Tenable Nessus
Tenable Nessus
added 2022/05/04 12:0 a.m.37 views

SUSE SLES15: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2022:1511-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1511-1 advisory. Update to version 2.36.0 bsc1198290: - CVE-2022-22624: Fixed use after free that may lead to arbitrary code execution. -...

8.8CVSS7.7AI score0.03668EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2022/04/28 12:0 a.m.56 views

SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2022:1431-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1431-1 advisory. - A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in...

8.8CVSS8.2AI score0.03668EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2022/04/28 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2022:1431-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.8AI score0.03668EPSS
Exploits0References5
OSV
OSV
added 2022/03/18 6:15 p.m.9 views

CVE-2022-22594

A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. A website may be able to track sensitive user information...

6.5CVSS7.6AI score
Exploits0References5
AlpineLinux
AlpineLinux
added 2022/03/18 5:59 p.m.61 views

CVE-2022-22594

A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. A website may be able to track sensitive user information...

6.5CVSS6.8AI score0.00815EPSS
Exploits0
CVE
CVE
added 2022/03/18 5:59 p.m.231 views

CVE-2022-22594

CVE-2022-22594 describes a cross-origin data exfiltration issue in WebKit/WebKitGTK via cross-origin tracking, later fixed in Safari 15.3, iOS 15.3, iPadOS 15.3, watchOS 8.4, tvOS 15.3, and macOS Monterey 12.2. The connected documents indicate the vulnerability allowed tracking of sensitive user ...

6.5CVSS6.4AI score0.00815EPSS
Exploits0References5Affected Software6
Tenable Nessus
Tenable Nessus
added 2022/03/05 12:0 a.m.270 views

SUSE SLES12: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2022:0690-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0690-1 advisory. Update to version 2.34.5 bsc1195735: - CVE-2022-22589: A validation issue was addressed with improved input sanitization. -...

9.3CVSS7.4AI score0.07617EPSS
Exploits4References31
OpenVAS
OpenVAS
added 2022/03/04 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2022:0690-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7AI score0.07617EPSS
Exploits4References7
OSV
OSV
added 2022/03/03 1:17 p.m.8 views

SUSE-SU-2022:0690-1 Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: Update to version 2.34.5 bsc1195735: - CVE-2022-22589: A validation issue was addressed with improved input sanitization. - CVE-2022-22590: A use after free issue was addressed with improved memory management. - CVE-2022-22592: A logic issue...

9.3CVSS7.8AI score0.07617EPSS
Exploits4References17
ThreatPost
ThreatPost
added 2022/02/11 1:45 p.m.312 views

Apple Patches Actively Exploited WebKit Zero Day

Apple has patched yet another zero-day vulnerability, this time in its WebKit browser engine, that threat actors already are actively exploiting to compromise iPhones, iPads and MacOS devices. The zero-day, tracked as CVE-2022-22620, is a Use-After-Free issue, which is related to incorrect use of...

10CVSS9AI score0.16342EPSS
Exploits0References12
The Hacker News
The Hacker News
added 2022/02/11 3:30 a.m.92 views

Apple Releases iOS, iPadOS, macOS Updates to Patch Actively Exploited Zero-Day Flaw

Apple on Thursday released security updates for iOS, iPadOS, macOS, and Safari to address a new WebKit flaw that it said may have been actively exploited in the wild, making it the company's third zero-day patch since the start of the year. Tracked as CVE-2022-22620, the issue concerns a...

10CVSS2.9AI score0.16342EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2022/01/27 9:56 p.m.92 views

Update now! Apple patches another actively used zero-day

Apple has released patches for iOS 15.3, iPadOS 15.3, and macOS Monterey 12.2 and is urging users to update. The most significant reasons are two actively exploited zero-day vulnerabilities, one of which has a publicly disclosed Proof-of-Concept PoC. Using this vulnerability, designated...

9.3CVSS8.7AI score0.28839EPSS
Exploits0
Circl
Circl
added 2022/01/27 4:0 a.m.4 views

CVE-2022-22594

creationtimestamp| type| source ---|---|--- 2022-01-27 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=729 2022-01-27 12:09:16+00:00| seen| https://t.me/truesecator/2562 2022-04-01 13:50:00+00:00| exploited| https://t.me/truesecator/2797 2022-12-14 14:05:53+00:00| seen|...

6.5CVSS6.9AI score0.00815EPSS
Exploits0References6
Rows per page
Query Builder