Debian Webkit2Gtk vulnerabilities
678 known vulnerabilities affecting debian/webkit2gtk.
Total CVEs
678
CISA KEV
38
actively exploited
Public exploits
113
Exploited in wild
53
Severity breakdown
CRITICAL14HIGH239MEDIUM150LOW275
Vulnerabilities
Page 21 of 34
CVE-2017-7020P3LOWCVSS 8.8fixed in webkit2gtk 2.16.3-2 (bookworm)2017
CVE-2017-7020 [HIGH] CVE-2017-7020: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected...
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memo
debian
CVE-2017-7087P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7087 [HIGH] CVE-2017-7087: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2017-7104P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7104 [HIGH] CVE-2017-7104: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2017-7098P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7098 [HIGH] CVE-2017-7098: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2017-7093P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7093 [HIGH] CVE-2017-7093: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2017-7094P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7094 [HIGH] CVE-2017-7094: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2017-7081P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7081 [HIGH] CVE-2017-7081: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2017-7120P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7120 [HIGH] CVE-2017-7120: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2017-7107P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7107 [HIGH] CVE-2017-7107: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2017-7100P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-7100 [HIGH] CVE-2017-7100: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa...
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an
debian
CVE-2017-7052P3LOWCVSS 8.8fixed in webkit2gtk 2.16.4-1 (bookworm)2017
CVE-2017-7052 [HIGH] CVE-2017-7052: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected...
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memo
debian
CVE-2017-13788P3LOWCVSS 8.8fixed in webkit2gtk 2.18.3-1 (bookworm)2017
CVE-2017-13788 [HIGH] CVE-2017-13788: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.1 is affected. ...
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory c
debian
CVE-2017-13803P3LOWCVSS 8.8fixed in webkit2gtk 2.18.3-1 (bookworm)2017
CVE-2017-13803 [HIGH] CVE-2017-13803: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.1 is affected. ...
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory c
debian
CVE-2017-13793P3LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017
CVE-2017-13793 [HIGH] CVE-2017-13793: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.1 is affected. ...
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory c
debian
CVE-2025-43227P3HIGHCVSS 7.5fixed in webkit2gtk 2.48.5-1~deb12u1 (bookworm)2025
CVE-2025-43227 [HIGH] CVE-2025-43227: webkit2gtk - This issue was addressed through improved state management. This issue is fixed ...
This issue was addressed through improved state management. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing maliciously crafted web content may disclose sensitive user information.
Scope: local
bookworm: resolved (fixed in 2.48.5-1~deb12u1)
bullseye: resolved (fixed in 2.48.5-1~de
debian
CVE-2017-1000121P3LOWCVSS 9.8fixed in webkit2gtk 2.16.3-2 (bookworm)2017
CVE-2017-1000121 [CRITICAL] CVE-2017-1000121: webkit2gtk - The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not pro...
The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate message size metadata, allowing a compromised secondary process to trigger an integer overflow and subsequent buffer overflow in the UI process. This vulnerability does not affect Apple products.
Scope: local
bookworm: resolved (fixed in 2.16.3-2)
bullseye: reso
debian
CVE-2016-4624P3LOWCVSS 8.8fixed in webkit2gtk 2.12.4-1 (bookworm)2016
CVE-2016-4624 [HIGH] CVE-2016-4624: webkit2gtk - WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 all...
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4589, CVE-2016-4622, and CVE-2016-4623.
Scope: local
bookworm: resolved (fixed in 2.12.4-1)
bullseye: resolved (fixed in 2.12.4
debian
CVE-2018-4359P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4359 [HIGH] CVE-2018-4359: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ...
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
Scope: local
bookworm: resolved (fixed in 2.22.0-2)
bullseye: resolved (fixed in 2.22.0-2)
forky: resolved (fixed in 2.22.0-2)
sid: resolved (fixed in 2.22.0-2)
debian
CVE-2018-4358P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4358 [HIGH] CVE-2018-4358: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ...
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
Scope: local
bookworm: resolved (fixed in 2.22.0-2)
bullseye: resolved (fixed in 2.22.0-2)
forky: resolved (fixed in 2.22.0-2)
sid: resolved (fixed in 2.22.0-2)
debian
CVE-2018-4299P3LOWCVSS 8.8fixed in webkit2gtk 2.22.0-2 (bookworm)2018
CVE-2018-4299 [HIGH] CVE-2018-4299: webkit2gtk - Multiple memory corruption issues were addressed with improved memory handling. ...
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
Scope: local
bookworm: resolved (fixed in 2.22.0-2)
bullseye: resolved (fixed in 2.22.0-2)
forky: resolved (fixed in 2.22.0-2)
sid: resolved (fixed in 2.22.0-2)
debian