Lucene search

K
ubuntucveUbuntu.comUB:CVE-2019-6251
HistoryJan 14, 2019 - 12:00 a.m.

CVE-2019-6251

2019-01-1400:00:00
ubuntu.com
ubuntu.com
7

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.009 Low

EPSS

Percentile

82.5%

WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address
bar spoofing upon certain JavaScript redirections. An attacker could cause
malicious web content to be displayed as if for a trusted URI. This is
similar to the CVE-2018-8383 issue in Microsoft Edge.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchwebkit2gtk< 2.24.1-0ubuntu0.18.04.1UNKNOWN
ubuntu18.10noarchwebkit2gtk< 2.24.1-0ubuntu0.18.10.2UNKNOWN
ubuntu16.04noarchwebkit2gtk< anyUNKNOWN

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.009 Low

EPSS

Percentile

82.5%