Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-26716HistoryNov 01, 2022 - 8:15 p.m.
CVE-2022-26716
2022-11-0120:15:17
Debian Security Bug Tracker
security-tracker.debian.org
20
memory corruption
state management
tvos
watchos
web content
arbitrary code execution
unix
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
68.1%
A memory corruption issue was addressed with improved state management. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4, Safari 15.5. Processing maliciously crafted web content may lead to arbitrary code execution.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | webkit2gtk | < 2.36.3-1 | webkit2gtk_2.36.3-1_all.deb |
| Debian | 11 | all | webkit2gtk | < 2.36.3-1~deb11u1 | webkit2gtk_2.36.3-1~deb11u1_all.deb |
| Debian | 999 | all | webkit2gtk | < 2.36.3-1 | webkit2gtk_2.36.3-1_all.deb |
| Debian | 13 | all | webkit2gtk | < 2.36.3-1 | webkit2gtk_2.36.3-1_all.deb |
| Debian | 12 | all | wpewebkit | < 2.36.3-1 | wpewebkit_2.36.3-1_all.deb |
| Debian | 11 | all | wpewebkit | < 2.36.3-1~deb11u1 | wpewebkit_2.36.3-1~deb11u1_all.deb |
| Debian | 999 | all | wpewebkit | < 2.36.3-1 | wpewebkit_2.36.3-1_all.deb |
| Debian | 13 | all | wpewebkit | < 2.36.3-1 | wpewebkit_2.36.3-1_all.deb |
Related
cvelist
cvelist
CVE-2022-26716
2022-11-01 00:00:00
prion
prion
Memory corruption
2022-11-01 20:15:00
nvd
nvd
CVE-2022-26716
2022-11-01 20:15:17
redhatcve
redhatcve
CVE-2022-26716
2022-06-07 02:29:18
ubuntucve
ubuntucve
CVE-2022-26716
2022-05-30 00:00:00
veracode
veracode
Arbitrary Code Execution
2022-12-31 00:46:04
cve
cve
CVE-2022-26716
2022-11-01 20:15:17
openvas
openvas
Fedora: Security Advisory for webkit2gtk3 (FEDORA-2022-c05acca28d)
2022-06-19 00:00:00
Fedora: Security Advisory for webkit2gtk3 (FEDORA-2022-e883576e1c)
2022-06-06 00:00:00
Ubuntu: Security Advisory (USN-5457-1)
2022-06-01 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: webkit2gtk3-2.36.3-1.fc35
2022-06-18 01:45:03
[SECURITY] Fedora 36 Update: webkit2gtk3-2.36.3-1.fc36
2022-06-05 01:13:31
ubuntu
ubuntu
WebKitGTK vulnerabilities
2022-06-01 00:00:00
nessus
nessus
Ubuntu 20.04 LTS / 22.04 LTS : WebKitGTK vulnerabilities (USN-5457-1)
2022-06-01 00:00:00
SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2022:2071-1)
2022-06-15 00:00:00
SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2022:2030-1)
2022-06-10 00:00:00
apple
apple
About the security content of Safari 15.5
2022-05-16 00:00:00
About the security content of watchOS 8.6
2022-05-16 00:00:00
About the security content of tvOS 15.5
2022-05-16 00:00:00
osv
osv
webkit2gtk vulnerabilities
2022-06-01 11:24:25
webkit2gtk - security update
2022-06-01 00:00:00
wpewebkit - security update
2022-06-01 00:00:00
suse
suse
Security update for webkit2gtk3 (important)
2022-06-14 00:00:00
Security update for webkit2gtk3 (important)
2022-06-14 00:00:00
debian
debian
[SECURITY] [DSA 5155-1] wpewebkit security update
2022-05-31 23:39:09
[SECURITY] [DSA 5154-1] webkit2gtk security update
2022-05-31 23:38:05
rocky
rocky
webkit2gtk3 security and bug fix update
2022-11-08 06:26:46
webkit2gtk3 security and bug fix update
2022-11-15 06:14:22
almalinux
almalinux
Moderate: webkit2gtk3 security and bug fix update
2022-11-15 00:00:00
Moderate: webkit2gtk3 security and bug fix update
2022-11-08 00:00:00
oraclelinux
oraclelinux
webkit2gtk3 security and bug fix update
2022-11-15 00:00:00
webkit2gtk3 security and bug fix update
2022-11-22 00:00:00
redhat
redhat
(RHSA-2022:7704) Moderate: webkit2gtk3 security and bug fix update
2022-11-08 06:26:46
(RHSA-2022:8054) Moderate: webkit2gtk3 security and bug fix update
2022-11-15 06:14:22
(RHSA-2023:0918) Moderate: Service Binding Operator security update
2023-02-27 00:54:13
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2022-08-31 00:00:00
amazon
amazon
Important: webkitgtk4
2023-06-07 23:52:00
Important: webkitgtk4
2023-06-07 23:52:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
68.1%
Related for DEBIANCVE:CVE-2022-26716