Lucene search
+L

12 matches found

nessus
nessus
added 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-25362

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability in WebCore::RenderLayer::repaintBlockSelectionGaps in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

8.8CVSS7.8AI score0.00974EPSS
Exploits0References2
osv
osv
added 2023/05/16 12:0 a.m.33 views

ALSA-2023:2834 Important: webkit2gtk3 security and bug fix update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: use-after-free issue leading to arbitrary code execution CVE-2022-42826 webkitgtk: memory corruption issue leading to arbitrary code execution CVE-2023-23517 webkitgtk: memory...

8.8CVSS9AI score0.34574EPSS
Exploits2References46
almalinux
almalinux
added 2023/05/09 12:0 a.m.65 views

Important: webkit2gtk3 security and bug fix update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: use-after-free issue leading to arbitrary code execution CVE-2022-42826 webkitgtk: memory corruption issue leading to arbitrary code execution CVE-2023-23517 webkitgtk: memory...

8.8CVSS8.9AI score0.34574EPSS
Exploits2References46
nessus
nessus
added 2023/05/02 12:0 a.m.37 views

SUSE SLES15: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2023:2077-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2077-1 advisory. Update to version 2.38.6 bsc1210731: - CVE-2022-0108: Fixed information leak. - CVE-2022-32885: Fixed arbitrary code...

8.8CVSS7.7AI score0.27076EPSS
Exploits1References27
nessus
nessus
added 2023/05/02 12:0 a.m.30 views

SUSE SLES15: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2023:2078-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2078-1 advisory. Update to version 2.38.6 bsc1210731: - CVE-2022-0108: Fixed information leak. - CVE-2022-32885: Fixed arbitrary code execution. -...

8.8CVSS7.7AI score0.27076EPSS
Exploits1References27
nessus
nessus
added 2023/04/29 12:0 a.m.48 views

SUSE SLED15: WebKit2GTK-4.0-lang / WebKit2GTK-4.1-lang / WebKit2GTK-5.0-lang / etc (SUSE-SU-2023:2065-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2065-1 advisory. Update to version 2.38.6 bsc1210731: - CVE-2022-0108: Fixed information leak. - CVE-2022-32885:...

8.8CVSS7.7AI score0.27076EPSS
Exploits1References27
redhatcve
redhatcve
added 2023/03/03 8:30 a.m.33 views

CVE-2023-25362

A use-after-free vulnerability in WebCore::RenderLayer::repaintBlockSelectionGaps in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

7.5CVSS8.6AI score0.00974EPSS
Exploits0References4
osv
osv
added 2023/03/02 4:15 p.m.2 views

DEBIAN-CVE-2023-25362

A use-after-free vulnerability in WebCore::RenderLayer::repaintBlockSelectionGaps in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

8.8CVSS8AI score0.00974EPSS
Exploits0References1
osv
osv
added 2023/03/02 4:15 p.m.7 views

CVE-2023-25362

A use-after-free vulnerability in WebCore::RenderLayer::repaintBlockSelectionGaps in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

8.8CVSS8.8AI score
Exploits0References3
cve
cve
added 2023/03/02 12:0 a.m.109 views

CVE-2023-25362

CVE-2023-25362 is a use-after-free in WebKitGTK’s WebCore::RenderLayer::repaintBlockSelectionGaps, exploitable remotely via WebKitGTK before version 2.36.8. Affected products reference this flaw (MiracleLinux AXSA:2023-5612, Alibaba/Red Hat advisories). Mitigation noted in sources: upgrade WebKit...

8.8CVSS8.6AI score0.00974EPSS
Exploits0References3Affected Software1
openvas
openvas
added 2022/09/30 12:0 a.m.30 views

Debian: Security Advisory (DLA-3124-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.01413EPSS
Exploits0References4
openvas
openvas
added 2022/09/29 12:0 a.m.30 views

Debian: Security Advisory (DSA-5240-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.1AI score0.03213EPSS
Exploits0References6
Rows per page
Query Builder