Lucene search
K

67 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 8 : webkit2gtk3-2.36.7-1.el8.3.ML.1 (AXSA:2023-5310:08)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5310:08 advisory. WebKitGTK: use-after-free leads to arbitrary code execution CVE-2023-28205 Tenable has extracted the preceding description block directly from the MiracleLin...

8.8CVSS8.7AI score0.27076EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : webkit2gtk3-2.36.7-1.el9.3 (AXSA:2023-5308:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5308:07 advisory. WebKitGTK: use-after-free leads to arbitrary code execution CVE-2023-28205 Tenable has extracted the preceding description block directly from the MiracleLin...

8.8CVSS8.5AI score0.27076EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-33715

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00934EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.14 views

Alibaba Cloud Linux 3 : 0040: webkit2gtk3 (ALINUX3-SA-2023:0040)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0040 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-28205: A use after free issue was addresse...

8.8CVSS8.6AI score0.27076EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2023-28205

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS...

8.8CVSS8.5AI score0.27076EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/02/08 12:0 a.m.33 views

CentOS 8 : webkit2gtk3 (CESA-2023:1919)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:1919 advisory. - A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadO...

8.8CVSS8.6AI score0.27076EPSS
Exploits0References2
GoogleProjectZero
GoogleProjectZero
added 2023/10/13 12:0 a.m.84 views

An analysis of an in-the-wild iOS Safari WebContent to GPU Process exploit

By Ian Beer A graph representation of the sandbox escape NSExpression payload In April this year Google's Threat Analysis Group, in collaboration with Amnesty International, discovered an in-the-wild iPhone zero-day exploit chain being used in targeted attacks delivered via malicious link. The...

8.8CVSS8.9AI score0.27076EPSS
Exploits0
Oracle linux
Oracle linux
added 2023/05/24 12:0 a.m.36 views

webkit2gtk3 security update

2.38.5-1.3 - Restore libwpe and wpebackend-fdo dependencies Related: 2185741 sort of 2.38.5-1.2 - Disable libwpe and wpebackend-fdo dependencies Related: 2185741 sort of 2.38.5-1.1 - Add patch for CVE-2023-28205 Resolves: 2185741 2.38.5-1 - Update to 2.38.5 Related: 2127468 2.38.4-1 - Update to...

8.8CVSS7.1AI score0.27076EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/05/22 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2023-0177)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.27076EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2023/05/19 12:0 a.m.37 views

AlmaLinux 8 : webkit2gtk3 (ALSA-2023:3108)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:3108 advisory. - A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This flaw allows attackers with network...

8.8CVSS8.4AI score0.27076EPSS
Exploits0References2
OSV
OSV
added 2023/05/18 7:17 p.m.34 views

RLSA-2023:3108 Important: webkit2gtk3 security update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: WebKitGTK: Regression of CVE-2023-28205 fixes in the Rocky Linux CVE-2023-2203 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

8.8CVSS9.1AI score0.00934EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2023/05/18 7:17 p.m.39 views

webkit2gtk3 security update

An update is available for webkit2gtk3. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list WebKitGTK is the port of the portable web rendering engine WebKit to the...

8.8CVSS6.8AI score0.00934EPSS
Exploits0
Prion
Prion
added 2023/05/17 10:15 p.m.27 views

Input validation

A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This flaw allows attackers with network access to pass specially crafted web content files, causing a denial of service or arbitrary code execution. This CVE exists because of...

6.5CVSS8.8AI score0.27076EPSS
Exploits0References4Affected Software5
Oracle linux
Oracle linux
added 2023/05/17 12:0 a.m.35 views

webkit2gtk3 security update

2.38.5-1.1 - Add patch for CVE-2023-28205 Resolves: 2185745 2.38.5-1 - Update to 2.38.5 Related: 2127467 2.38.4-1 - Update to 2.38.4 Related: 2127467 2.38.3-1 - Update to 2.38.3 Related: 2127467 2.38.2-1 - Update to 2.38.2 Related: 2127467 2.38.1-2 - Fix use with aarch64 64 KiB page size Related:...

8.8CVSS8.7AI score0.27076EPSS
Exploits0
Debian CVE
Debian CVE
added 2023/05/17 12:0 a.m.78 views

CVE-2023-2203

A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This flaw allows attackers with network access to pass specially crafted web content files, causing a denial of service or arbitrary code execution. This CVE exists because of...

8.8CVSS8.6AI score0.00934EPSS
Exploits0
Cvelist
Cvelist
added 2023/05/17 12:0 a.m.34 views

CVE-2023-2203

A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This flaw allows attackers with network access to pass specially crafted web content files, causing a denial of service or arbitrary code execution. This CVE exists because of...

9.1AI score0.00934EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/16 10:52 a.m.64 views

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.8CVSS7.5AI score0.27076EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2023/05/16 12:0 a.m.41 views

Important: webkit2gtk3 security update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: WebKitGTK: Regression of CVE-2023-28205 fixes in the AlmaLinux CVE-2023-2203 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

8.8CVSS6.9AI score0.00934EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/15 12:0 a.m.41 views

Oracle Linux 9 : webkit2gtk3 (ELSA-2023-2653)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-2653 advisory. - Add patch for CVE-2023-28205 Resolves: 2185745 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note th...

8.8CVSS8.2AI score0.27076EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/05/15 12:0 a.m.35 views

Debian: Security Advisory (DLA-3419-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.27076EPSS
Exploits1References6
Rows per page
Query Builder