CVE-2021-1765

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. Maliciously crafted web content may violate iframe sandboxing policy...

CVE-2021-1765

CVE-2021-1765 affects WebKitGTK/WebKit2GTK prior to version 2.30.6. The issue is described as an iframe sandboxing policy violation that could allow malicious web content to bypass sandbox restrictions. Fixed upstream in WebKitGTK/WebKit2GTK 2.30.6 (and WPE WebKit), with distributions (e.g., Debi...

CVE-2021-1765

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. Maliciously crafted web content may violate iframe sandboxing policy...

Sandbox Escape

webkitgtk is vulnerable to sandbox escape. Maliciously crafted web content may violate iframe sandboxing policy...

Remote Code Execution (RCE)

webkit2gtk is vulnerable to remote code execution. Maliciously crafted web content may violate iframe sandboxing policy. This issue was addressed with improved iframe sandbox enforcement...

Debian: Security Advisory (DSA-4877-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4877-1 : webkit2gtk - security update

The following vulnerabilities have been discovered in the webkit2gtk web engine : - CVE-2020-27918 Liu Long discovered that processing maliciously crafted web content may lead to arbitrary code execution. - CVE-2020-29623 Simon Hunt discovered that users may be unable to fully delete their browsi...

CVE-2021-1765

A flaw was found in WebKitGTK and WPE WebKit in versions prior to 2.30.6. Maliciously crafted web content may violate the iframe sandboxing policy. The highest threat from this vulnerability is to data integrity...

merriam-webster.com IFRAME Injection vulnerability OBB-1969264

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| merriam-webster.com ---|--- Open Bug...

replicon.com IFRAME Injection vulnerability OBB-1969233

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| replicon.com ---|--- Open Bug Bounty...

info24.am IFRAME Injection vulnerability OBB-1969213

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| info24.am ---|--- Open Bug Bounty...

[SECURITY] [DSA 4877-1] webkit2gtk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4877-1 [email protected] https://www.debian.org/security/ Alberto Garcia March 27, 2021 https://www.debian.org/security/faq -...

CVE-2021-23888

Unvalidated client-side URL redirect vulnerability in McAfee ePolicy Orchestrator ePO prior to 5.10 Update 10 could cause an authenticated ePO user to load an untrusted site in an ePO iframe which could steal information from the authenticated user...

Open redirect

Unvalidated client-side URL redirect vulnerability in McAfee ePolicy Orchestrator ePO prior to 5.10 Update 10 could cause an authenticated ePO user to load an untrusted site in an ePO iframe which could steal information from the authenticated user...

PT-2021-15590 · Mcafee · Mcafee Epolicy Orchestrator

Name of the Vulnerable Software and Affected Versions: McAfee ePolicy Orchestrator versions prior to 5.10 Update 10 Description: The issue is related to an unvalidated client-side URL redirect, which could allow an authenticated user to load an untrusted site in an ePO iframe, potentially leading...

CVE-2021-1801

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Maliciously crafted web content may violate iframe sandboxing policy...

CVE-2021-1765

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. Maliciously crafted web content may violate iframe sandboxing policy...

UBUNTU-CVE-2021-1765

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. Maliciously crafted web content may violate iframe sandboxing policy...

UBUNTU-CVE-2021-1801

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Maliciously crafted web content may violate iframe sandboxing policy...

The vulnerability in the isolated environment of the Google Chrome browser’s iframe allows a perpetrator to compromise data integrity.

The vulnerability in the isolated iframe environment of Google Chrome relates to improper security checks for standard elements. Exploiting this vulnerability allows a remote attacker to compromise data integrity...