cbcvebase.
CVE-2021-42762
published 2021-10-20

CVE-2021-42762: BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into…

PriorityP424medium5.3CVSS 3.1
AVLACLPRLUINSUCLILAL
EPSS
0.50%
39.2th percentile
BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace. The impact is limited to host services that create UNIX sockets that WebKit mounts inside its sandbox, and the sandboxed process remains otherwise confined. NOTE: this is similar to CVE-2021-41133.

Affected

9 ranges
VendorProductVersion rangeFixed in
debiandebian_linux
debiandebian_linux
debianwebkit2gtk< webkit2gtk 2.34.1-1 (bookworm)webkit2gtk 2.34.1-1 (bookworm)
debianwpewebkit< webkit2gtk 2.34.1-1 (bookworm)webkit2gtk 2.34.1-1 (bookworm)
fedoraprojectfedora
fedoraprojectfedora
fedoraprojectfedora
webkitgtkwebkitgtk< 2.34.12.34.1
wpewebkitwpe_webkit< 2.34.12.34.1

CVSS provenance

nvdv3.15.3MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv7.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.