CVE-2023-39928
published 2023-10-06CVE-2023-39928: A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2.40.5. A specially crafted web page can abuse this vulnerability to cause…
PriorityP346high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
1.41%
69.3th percentile
A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2.40.5. A specially crafted web page can abuse this vulnerability to cause memory corruption and potentially arbitrary code execution. A user would need to to visit a malicious webpage to trigger this vulnerability.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | webkit2gtk | < webkit2gtk 2.42.1-1~deb12u1 (bookworm) | webkit2gtk 2.42.1-1~deb12u1 (bookworm) |
| debian | wpewebkit | < webkit2gtk 2.42.1-1~deb12u1 (bookworm) | webkit2gtk 2.42.1-1~deb12u1 (bookworm) |
| fedoraproject | fedora | — | — |
| webkit | webkit | — | — |
| webkitgtk | webkitgtk | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7245-jcxv-7q52: A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2
ghsa_unreviewed·2023-10-06
CVE-2023-39928 [HIGH] CWE-416 GHSA-7245-jcxv-7q52: A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2
A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2.40.5. A specially crafted web page can abuse this vulnerability to cause memory corruption and potentially arbitrary code execution. A user would need to to visit a malicious webpage to trigger this vulnerability.
OSV
CVE-2023-39928: A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2
osv·2023-10-06·CVSS 8.8
CVE-2023-39928 [HIGH] CVE-2023-39928: A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2
A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2.40.5. A specially crafted web page can abuse this vulnerability to cause memory corruption and potentially arbitrary code execution. A user would need to to visit a malicious webpage to trigger this vulnerability.
Ubuntu
WebKitGTK vulnerabilities
vendor_ubuntu·2023-10-10
CVE-2023-41993 WebKitGTK vulnerabilities
Title: WebKitGTK vulnerabilities
Summary: Several security issues were fixed in WebKitGTK.
Several security issues were discovered in the WebKitGTK Web and JavaScript
engines. If a user were tricked into viewing a malicious website, a remote
attacker could exploit a variety of issues related to web browser security,
including cross-site scripting attacks, denial of service attacks, and
arbitrary code execution.
Instructions: This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart any applications
that use WebKitGTK, such as Epiphany, to make all the necessary changes.
Red Hat
webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports
vendor_redhat·2023-09-28·CVSS 8.8
CVE-2023-39928 [HIGH] CWE-416 webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports
webkitgtk: use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports
A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2.40.5. A specially crafted web page can abuse this vulnerability to cause memory corruption and potentially arbitrary code execution. A user would need to to visit a malicious webpage to trigger this vulnerability.
A use-after-free vulnerability was found in the WebKitGTK's MediaRecorder API that may lead to memory corruption and Remote Code Execution. The victim needs to access a malicious web page to trigger this vulnerability.
Package: webkitgtk (Red Hat Enterprise Linux 6) - Out of support scope
Package: webkitgtk3 (Red Hat Enterprise Linux 7) - Out of support scope
Debian
CVE-2023-39928: webkit2gtk - A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitG...
vendor_debian·2023·CVSS 8.8
CVE-2023-39928 [HIGH] CVE-2023-39928: webkit2gtk - A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitG...
A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2.40.5. A specially crafted web page can abuse this vulnerability to cause memory corruption and potentially arbitrary code execution. A user would need to to visit a malicious webpage to trigger this vulnerability.
Scope: local
bookworm: resolved (fixed in 2.42.1-1~deb12u1)
bullseye: resolved (fixed in 2.42.1-1~deb11u1)
forky: resolved (fixed in 2.42.0-1)
sid: resolved (fixed in 2.42.0-1)
trixie: resolved (fixed in 2.42.0-1)
No detection rules found.
No public exploits indexed.
Talos
10 zero-day vulnerabilities in industrial cell router could lead to code execution, buffer overflows
blogs_talos·2023-10-11·CVSS 9.8
[CRITICAL] 10 zero-day vulnerabilities in industrial cell router could lead to code execution, buffer overflows
Cisco Talos recently disclosed 11 vulnerabilities, 10 of which are zero-days without a patch in an industrial cellular router.
Attackers could exploit these vulnerabilities in the Yifan YF325 to carry out a variety of attacks, in some cases gaining the ability to execute arbitrary shell commands on the targeted device.
The one other security issue Talos has disclosed over the past two weeks is a use-after-free vulnerability in an open-source port of WebKit, a popular content rendering engine used in popular web browsers like Apple Safari.
For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from Snort.org, and our latest Vulnerability Advisories are always posted on Talos Intelligence’s website.
## Yifan YF325
Discovered by France
Talos
10 zero-day vulnerabilities in industrial cell router could lead to code execution, buffer overflows
blogs_talos·2023-10-11·CVSS 9.8
[CRITICAL] 10 zero-day vulnerabilities in industrial cell router could lead to code execution, buffer overflows
## 10 zero-day vulnerabilities in industrial cell router could lead to code execution, buffer overflows
Cisco Talos recently disclosed 11 vulnerabilities, 10 of which are zero-days without a patch in an industrial cellular router.
Attackers could exploit these vulnerabilities in the Yifan YF325 to carry out a variety of attacks, in some cases gaining the ability to execute arbitrary shell commands on the targeted device.
The one other security issue Talos has disclosed over the past two weeks is a use-after-free vulnerability in an open-source port of WebKit, a popular content rendering engine used in popular web browsers like Apple Safari.
For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from Snort.org , and our latest Vulnera
https://lists.fedoraproject.org/archives/list/[email protected]/message/4EEMDC5TQAANFH5D77QM34ZTUKXPFGVL/https://security.gentoo.org/glsa/202401-33https://talosintelligence.com/vulnerability_reports/TALOS-2023-1831https://webkitgtk.org/security/WSA-2023-0009.htmlhttps://www.debian.org/security/2023/dsa-5527https://lists.fedoraproject.org/archives/list/[email protected]/message/4EEMDC5TQAANFH5D77QM34ZTUKXPFGVL/https://security.gentoo.org/glsa/202401-33https://talosintelligence.com/vulnerability_reports/TALOS-2023-1831https://webkitgtk.org/security/WSA-2023-0009.htmlhttps://www.debian.org/security/2023/dsa-5527https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1831
2023-10-06
Published