Vulnerabilities (CVE)

Vendor filter

Webkitgtk Subscribe

Filter

59 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-11713 2 Webkitgtk, Gnome 2 Webkitgtk%2b, Libsoup 2019-10-03 4.3
WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ prior to version 2.20.0 or without libsoup 2.62.0, unexpectedly failed to use system proxy settings for WebSocket...
CVE-2018-4113 3 Apple, Webkitgtk, Canonical 9 Apple Tv, Icloud, Itunes and 6 more 2019-10-03 4.3
An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before...
CVE-2018-11646 1 Webkitgtk 1 Webkitgtk%2b 2019-10-03 5.0
webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash.
CVE-2019-6251 6 Gnome, Webkitgtk, Canonical and 3 more 6 Epiphany, Webkitgtk, Ubuntu Linux and 3 more 2019-09-06 5.8
WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the...
CVE-2019-11070 1 Webkitgtk 1 Webkitgtk 2019-05-13 5.0
WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video (HLS, DASH, or Smooth Streaming), an error resulting in deanonymization. This issue was corrected by...
CVE-2019-8375 3 Webkitgtk, Canonical, Opensuse 4 Webkitgtk, Webkitgtk%2b, Ubuntu Linux and 1 more 2019-05-09 7.5
The UIProcess subsystem in WebKit, as used in WebKitGTK through 2.23.90 and WebKitGTK+ through 2.22.6 and other products, does not prevent the script dialog size from exceeding the web view size, which allows remote attackers to cause a denial of...
CVE-2016-1783 2 Apple, Webkitgtk 5 Iphone Os, Safari, Apple Tv and 2 more 2019-03-25 9.3
WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2016-1727 2 Apple, Webkitgtk 6 Iphone Os, Safari, Watchos and 3 more 2019-03-25 9.3
WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and tvOS before 9.1.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-1724.
CVE-2016-1724 2 Apple, Webkitgtk 6 Iphone Os, Safari, Watchos and 3 more 2019-03-25 6.8
WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and tvOS before 9.1.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-1727.
CVE-2016-1859 2 Apple, Webkitgtk 5 Iphone Os, Safari, Apple Tv and 2 more 2019-03-25 6.8
The WebKit Canvas implementation in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2016-1858 2 Apple, Webkitgtk 5 Iphone Os, Safari, Apple Tv and 2 more 2019-03-25 4.3
WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, improperly tracks taint attributes, which allows remote attackers to obtain sensitive information via a crafted web site.
CVE-2016-1857 2 Apple, Webkitgtk 5 Iphone Os, Safari, Apple Tv and 2 more 2019-03-25 6.8
WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than...
CVE-2016-1856 2 Apple, Webkitgtk 5 Iphone Os, Safari, Apple Tv and 2 more 2019-03-25 6.8
WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than...
CVE-2016-1854 2 Apple, Webkitgtk 5 Iphone Os, Safari, Apple Tv and 2 more 2019-03-25 6.8
WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than...
CVE-2016-4583 2 Apple, Webkitgtk 2 Webkit, Webkitgtk%2b 2019-03-20 2.6
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to bypass the Same Origin Policy and obtain image date from an unintended web site via a timing attack involving an SVG document.
CVE-2016-4592 2 Apple, Webkitgtk 2 Webkit, Webkitgtk%2b 2019-03-20 7.1
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to cause a denial of service (memory consumption) via a crafted web site.
CVE-2019-6234 2 Apple, Webkitgtk 6 Icloud, Itunes, Safari and 3 more 2019-03-16 6.8
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to...
CVE-2017-2355 2 Apple, Webkitgtk 7 Iphone Os, Safari, Itunes and 4 more 2019-03-13 6.8
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. iCloud before 6.1.1 is affected. iTunes before 12.5.5 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit"...
CVE-2017-2363 2 Apple, Webkitgtk 7 Iphone Os, Watch Os, Safari and 4 more 2019-03-11 4.3
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. watchOS before 3.1.3 is affected. The issue involves the "WebKit" component. It allows remote...
CVE-2017-2360 2 Apple, Webkitgtk 7 Mac Os X, Iphone Os, Watch Os and 4 more 2019-03-11 9.3
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. macOS before 10.12.3 is affected. tvOS before 10.1.1 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows attackers...