Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wpe webkit vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-40414
A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 10, iOS 17 and iPadOS 17, tvOS 17, macOS Sonoma 14, Safari 17. Processing web content may lead to arbitrary code execution.
Apple Macos
Apple Watchos
Apple Iphone Os
Apple Ipados
Apple Tvos
Apple Safari
8.8
CVSSv3
CVE-2021-21806
An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability.
Webkitgtk Webkitgtk 2.30.3
6.5
CVSSv3
CVE-2021-30897
An issue existed in the specification for the resource timing API. The specification was updated and the updated specification was implemented. This issue is fixed in macOS Monterey 12.0.1. A malicious website may exfiltrate data cross-origin.
Apple Tvos
Apple Ipados
Apple Iphone Os
Apple Macos
8.8
CVSSv3
CVE-2020-13584
An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.1 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in a remote code execution. The victim needs to visit a malicious web site to trigger this vulnerability.
Webkitgtk Webkitgtk 2.30.1
Fedoraproject Fedora 32
8.8
CVSSv3
CVE-2020-13558
A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free.
Webkitgtk Webkitgtk 2.30.1
NA
CVE-2014-1745
Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome prior to 35.0.1916.114, allows remote malicious users to cause a denial of service or possibly have unspecified other impact via vectors that trigger removal of an SVGFontFaceElement object,...
Google Chrome
Google Chrome 35.0.1916.99
Google Chrome 35.0.1916.57
Google Chrome 35.0.1916.3
Google Chrome 35.0.1916.38
Google Chrome 35.0.1916.105
Google Chrome 35.0.1916.95
Google Chrome 35.0.1916.52
Google Chrome 35.0.1916.82
Google Chrome 35.0.1916.42
Google Chrome 35.0.1916.36
Google Chrome 35.0.1916.111
Google Chrome 35.0.1916.61
Google Chrome 35.0.1916.98
Google Chrome 35.0.1916.47
Google Chrome 35.0.1916.110
Google Chrome 35.0.1916.10
Google Chrome 35.0.1916.20
Google Chrome 35.0.1916.85
Google Chrome 35.0.1916.9
Google Chrome 35.0.1916.92
Google Chrome 35.0.1916.23
3.3
CVSSv3
CVE-2020-29623
"Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. A user ma...
Apple Ipados
Apple Tvos
Apple Iphone Os
Apple Mac Os X
Apple Macos
Apple Mac Os X 10.14.6
Apple Mac Os X 10.15.7
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Webkitgtk Webkitgtk
6.5
CVSSv3
CVE-2021-45481
In WebKitGTK prior to 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
Webkitgtk Webkitgtk
6.5
CVSSv3
CVE-2021-45482
In WebKitGTK prior to 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.
Webkitgtk Webkitgtk
6.5
CVSSv3
CVE-2021-45483
In WebKitGTK prior to 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.
Webkitgtk Webkitgtk
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »