Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-25363HistoryMar 02, 2023 - 4:15 p.m.
CVE-2023-25363
2023-03-0216:15:14
Debian Security Bug Tracker
security-tracker.debian.org
6
webcore
vulnerability
remote execution
webkitgtk
unix
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.004 Low
EPSS
Percentile
72.8%
A use-after-free vulnerability in WebCore::RenderLayer::updateDescendantDependentFlags in WebKitGTK before 2.36.8 allows attackers to execute code remotely.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | webkit2gtk | < 2.38.0-1 | webkit2gtk_2.38.0-1_all.deb |
| Debian | 11 | all | webkit2gtk | < 2.38.0-1~deb11u1 | webkit2gtk_2.38.0-1~deb11u1_all.deb |
| Debian | 10 | all | webkit2gtk | < 2.38.0-1~deb10u1 | webkit2gtk_2.38.0-1~deb10u1_all.deb |
| Debian | 999 | all | webkit2gtk | < 2.38.0-1 | webkit2gtk_2.38.0-1_all.deb |
| Debian | 13 | all | webkit2gtk | < 2.38.0-1 | webkit2gtk_2.38.0-1_all.deb |
| Debian | 12 | all | wpewebkit | < 2.38.0-1 | wpewebkit_2.38.0-1_all.deb |
| Debian | 11 | all | wpewebkit | < 2.38.0-1~deb11u1 | wpewebkit_2.38.0-1~deb11u1_all.deb |
| Debian | 999 | all | wpewebkit | < 2.38.0-1 | wpewebkit_2.38.0-1_all.deb |
| Debian | 13 | all | wpewebkit | < 2.38.0-1 | wpewebkit_2.38.0-1_all.deb |
Related
nvd
nvd
CVE-2023-25363
2023-03-02 16:15:14
prion
prion
Design/Logic Flaw
2023-03-02 16:15:00
cvelist
cvelist
CVE-2023-25363
2023-03-02 00:00:00
redhatcve
redhatcve
CVE-2023-25363
2023-03-03 08:30:20
cve
cve
CVE-2023-25363
2023-03-02 16:15:14
ubuntucve
ubuntucve
CVE-2023-25363
2023-03-02 00:00:00
osv
osv
webkit2gtk - security update
2022-09-29 00:00:00
wpewebkit - security update
2022-09-28 00:00:00
webkit2gtk - security update
2022-09-28 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3124-1)
2022-09-30 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:2078-1)
2023-05-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:2077-1)
2023-05-02 00:00:00
nessus
nessus
SUSE SLES12 Security Update : webkit2gtk3 (SUSE-SU-2023:2056-1)
2023-04-28 00:00:00
oraclelinux
oraclelinux
webkit2gtk3 security and bug fix update
2023-05-15 00:00:00
webkit2gtk3 security and bug fix update
2023-05-24 00:00:00
almalinux
almalinux
Important: webkit2gtk3 security and bug fix update
2023-05-16 00:00:00
Important: webkit2gtk3 security and bug fix update
2023-05-09 00:00:00
redhat
redhat
(RHSA-2023:2834) Important: webkit2gtk3 security and bug fix update
2023-05-16 05:55:57
(RHSA-2023:2256) Important: webkit2gtk3 security and bug fix update
2023-05-09 05:05:11
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2023-05-30 00:00:00
amazon
amazon
Important: webkitgtk4
2023-06-07 23:52:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.004 Low
EPSS
Percentile
72.8%
Related for DEBIANCVE:CVE-2023-25363