Debian Webkit2Gtk vulnerabilities

680 known vulnerabilities affecting debian/webkit2gtk.

Total CVEs

680

CISA KEV

actively exploited

Public exploits

102

Exploited in wild

Severity breakdown

CRITICAL14HIGH239MEDIUM150LOW277

Vulnerabilities

Page 32 of 34

CVE-2017-2544LOWCVSS 8.8fixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-2544 [HIGH] CVE-2017-2544: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.2 is affected... An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Scope: local bookworm: resolved (fixed in 2.16.3-2) bullseye

debian

CVE-2017-2468LOWCVSS 8.8PoCfixed in webkit2gtk 2.14.6-1 (bookworm)2017

CVE-2017-2468 [HIGH] CVE-2017-2468: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3 is affected. ... An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Scope: local bookworm: resolved (f

debian

CVE-2017-7081LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017

CVE-2017-7081 [HIGH] CVE-2017-7081: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa... An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an

debian

CVE-2017-7056LOWCVSS 8.8PoCfixed in webkit2gtk 2.16.6-1 (bookworm)2017

CVE-2017-7056 [HIGH] CVE-2017-7056: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected... An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memo

debian

CVE-2017-2392LOWCVSS 7.8fixed in webkit2gtk 2.14.6-1 (bookworm)2017

CVE-2017-2392 [HIGH] CVE-2017-2392: webkit2gtk - An issue was discovered in certain Apple products. Safari before 10.1 is affecte... An issue was discovered in certain Apple products. Safari before 10.1 is affected. The issue involves the "WebKit" component. It allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app. Scope: local bookworm: resolved (fixed in 2.14.6-1) bullseye: resolved (fixed in 2.14.6-1) forky: resolved (fixed in 2.14.6-1)

debian

CVE-2017-7059LOWCVSS 6.1fixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-7059 [MEDIUM] CVE-2017-7059: webkit2gtk - A DOMParser XSS issue was discovered in certain Apple products. iOS before 10.3.... A DOMParser XSS issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. Scope: local bookworm: resolved (fixed in 2.16.3-2) bullseye: resolved (fixed in 2.16.3-2) forky: resolved (fixed in 2.16.3-2) sid: resolved (fixed in 2.16.3-2)

debian

CVE-2017-2366LOWCVSS 8.8fixed in webkit2gtk 2.14.4-1 (bookworm)2017

CVE-2017-2366 [HIGH] CVE-2017-2366: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.2.1 is affected... An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. iCloud before 6.1.1 is affected. iTunes before 12.5.5 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web

debian

CVE-2017-2415LOWCVSS 8.8fixed in webkit2gtk 2.14.6-1 (bookworm)2017

CVE-2017-2415 [HIGH] CVE-2017-2415: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3 is affected. ... An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code by leveraging an unspecified "type confusion." Scope: local bookworm: resolved (fixed in 2.14.6-1

debian

CVE-2017-13803LOWCVSS 8.8fixed in webkit2gtk 2.18.3-1 (bookworm)2017

CVE-2017-13803 [HIGH] CVE-2017-13803: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.1 is affected. ... An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory c

debian

CVE-2017-2469LOWCVSS 8.8PoCfixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-2469 [HIGH] CVE-2017-2469: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3 is affected. ... An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Scope: local bookworm: resolved (f

debian

CVE-2017-7120LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017

CVE-2017-7120 [HIGH] CVE-2017-7120: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa... An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an

debian

CVE-2017-13856LOWCVSS 8.8fixed in webkit2gtk 2.18.4-1 (bookworm)2017

CVE-2017-13856 [HIGH] CVE-2017-13856: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.2 is affected. ... An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory c

debian

CVE-2017-7012LOWCVSS 8.8fixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-7012 [HIGH] CVE-2017-7012: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected... An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. The issue involves the "WebKit Web Inspector" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and

debian

CVE-2017-2446LOWCVSS 8.8PoCfixed in webkit2gtk 2.14.6-1 (bookworm)2017

CVE-2017-2446 [HIGH] CVE-2017-2446: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3 is affected. ... An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code via a crafted web site that leverages the mishandling of strict mode functions. Scope: local bookworm: resolved (fixed in 2.14.6-

debian

CVE-2017-7041LOWCVSS 8.8PoCfixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-7041 [HIGH] CVE-2017-7041: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.3 is affected... An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memo

debian

CVE-2017-7092LOWCVSS 8.8fixed in webkit2gtk 2.18.1-1 (bookworm)2017

CVE-2017-7092 [HIGH] CVE-2017-7092: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11 is affected. Sa... An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption an

debian

CVE-2017-13885LOWCVSS 8.8fixed in webkit2gtk 2.18.6-1 (bookworm)2017

CVE-2017-13885 [HIGH] CVE-2017-13885: webkit2gtk - An issue was discovered in certain Apple products. iOS before 11.2 is affected. ... An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory c

debian

CVE-2017-2547LOWCVSS 8.8PoCfixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-2547 [HIGH] CVE-2017-2547: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.3.2 is affected... An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Scope: local bookworm: resolved (fixed in 2.16.3-2) bullseye

debian

CVE-2017-7038LOWCVSS 6.1fixed in webkit2gtk 2.16.3-2 (bookworm)2017

CVE-2017-7038 [MEDIUM] CVE-2017-7038: webkit2gtk - A DOMParser XSS issue was discovered in certain Apple products. iOS before 10.3.... A DOMParser XSS issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. Scope: local bookworm: resolved (fixed in 2.16.3-2) bullseye: resolved (fixed in 2.16.3-2) forky: resolved (fixed in 2.16.3-2) sid: resolved (fixed in 2.16.3-2)

debian

CVE-2017-2350LOWCVSS 6.5fixed in webkit2gtk 2.14.4-1 (bookworm)2017

CVE-2017-2350 [MEDIUM] CVE-2017-2350: webkit2gtk - An issue was discovered in certain Apple products. iOS before 10.2.1 is affected... An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site. Scope: local bookworm: resolved (fixed in 2.14.4-1) bulls

debian

← Previous32 / 34Next →