coruna

Coruna The leaked exploit toolkit for various iOS versions. E...

Linux Distros Unpatched Vulnerability : CVE-2021-45483

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889. CVE-2021-45483 Note that Nessus...

SUSE CVE-2010-2300

Use-after-free vulnerability in the Element::normalizeAttributes function in dom/Element.cpp in WebCore in WebKit in Google Chrome before 5.0.375.70 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via vectors related to handlers for DOM mutation...

SUSE CVE-2015-6785

The CSPSource::hostMatches function in WebKit/Source/core/frame/csp/CSPSource.cpp in the Content Security Policy CSP implementation in Google Chrome before 47.0.2526.73 accepts an x.y hostname as a match for a .x.y pattern, which might allow remote attackers to bypass intended access restrictions...

SUSE CVE-2018-4120

An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the "WebKit" component. It allows remote attacker...

PT-2022-7604 · Apple +7 · Macos Ventura +13

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 16.2 tvOS versions prior to 16.2 macOS Ventura versions prior to 13.1 iOS versions prior to 16.2 iPadOS versions prior to 16.2 watchOS versions prior to 9.2 WebKitGTK affected versions not specified WPE WebKit affecte...

PT-2022-7527 · Apple +7 · Macos Monterey +14

Name of the Vulnerable Software and Affected Versions: WebKitGTK versions prior to the fixed version WPE WebKit versions prior to the fixed version macOS Big Sur versions prior to 11.7 macOS Ventura versions prior to 13 iOS versions prior to 16 iOS versions prior to 15.7 iPadOS versions prior to...

PT-2022-7580 · Apple +7 · Macos Ventura +13

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 16.1 tvOS versions prior to 16.1 macOS Ventura versions prior to 13 watchOS versions prior to 9.1 iOS versions prior to 16.1 iPadOS versions prior to 16.1 WebKitGTK affected versions not specified WPE WebKit affected...

DEBIAN-CVE-2021-45483

In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889...

CVE-2017-17821

WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology Preview Release 46, allows remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact because it calls the FastBitVectorWordOwner::resizeSlow function in WTF/wtf/FastBitVector.cpp f...

DEBIAN-CVE-2017-7038

A DOMParser XSS issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component...

Social Media Infected Image File (ImageGate)

A vulnerability exists in a web kit used by major web servers. A malicious code may be embedded in an image file. Specially crafted HTTP request is later used to manipulate a web client into executing the embedded code...

WebKit memory corruption vulnerability in multiple Apple products (CNVD-2016-05671)

Apple tvOS is a product of the U.S. Apple Apple tvOS is a set of smart TV operating system. WebKit is a set of open source Web browser engine developed by the KDE community, currently used by Apple Safari and Google Chrome and other browsers. A memory corruption vulnerability exists in WebKit in...

Unspecified Vulnerability in EMC Documentum Web Development Kit (WDK)

The EMC Documentum Web Development Kit WDK is a Web development kit. An unspecified vulnerability exists in EMC Documentum Web Development Kit WDK, which can be exploited by remote attackers to perform unauthorized operations...

EMC Documentum Web Development Kit (WDK) Cross-Site Request Forgery Vulnerability

The EMC Documentum Web Development Kit WDK is a Web development kit. A cross-site request forgery vulnerability exists in the EMC Documentum Web Development Kit WDK, which could be exploited by a remote attacker to perform certain unauthorized actions and gain access to vulnerable applications...

PT-2010-3083 · Apple · Ios +1

Use-after-free vulnerability in JavaScriptCore in WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors related to page transitions, a differen...