Lucene search
Redhat.comRH:CVE-2020-13753HistorySep 16, 2020 - 3:00 p.m.
CVE-2020-13753
2020-09-1615:00:18
redhat.com
access.redhat.com
12
0.008 Low
EPSS
Percentile
81.6%
A flaw was found in webkitgtk in versions prior to 2.28.3 and in WPE WebKit in versions prior to 2.28.3. The bubblewrap sandbox failed to properly block access to CLONE_NEWUSER and the TIOCSTI ioctl. CLONE_NEWUSER could potentially be used to confuse xdg- desktop-portal, which allows access outside the sandbox. TIOCSTI can be used to directly execute commands outside the sandbox by writing to the controlling terminalβs input buffer, similar to CVE-2017-5226. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Related
nvd
nvd
prion
prion
Design/Logic Flaw
2020-07-14 14:15:00
Input validation
2017-03-29 20:59:00
Design/Logic Flaw
2019-03-26 14:29:00
cve
cve
debiancve
debiancve
veracode
veracode
Arbitrary Code Execution
2020-08-06 21:32:23
ubuntucve
ubuntucve
cvelist
cvelist
CVE-2020-13753
2020-07-14 13:07:18
CVE-2017-5226
2017-03-29 00:00:00
alpinelinux
alpinelinux
CVE-2020-13753
2020-07-14 14:15:17
CVE-2019-10063
2019-03-26 14:29:00
osv
osv
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-4648-1)
2020-11-26 00:00:00
Oracle Linux 8 : flatpak (ELSA-2019-1143)
2019-08-12 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for flatpak (EulerOS-SA-2020-1004)
2020-01-23 00:00:00
CentOS Update for flatpak CESA-2019:1024 centos7
2019-05-14 00:00:00
Huawei EulerOS: Security Advisory for flatpak (EulerOS-SA-2020-1305)
2020-03-24 00:00:00
redhatcve
redhatcve
CVE-2019-10063
2019-10-09 23:42:02
CVE-2023-28100
2023-03-17 05:12:56
redhat
redhat
(RHSA-2019:1143) Important: flatpak security update
2019-05-13 04:50:39
(RHSA-2019:1024) Important: flatpak security update
2019-05-07 17:30:44
amazon
amazon
Important: flatpak
2019-05-29 19:11:00
Medium: flatpak
2023-07-17 17:39:00
centos
centos
flatpak security update
2019-05-13 15:08:37
mageia
mageia
Updated flatpak packages fix security vulnerability
2023-03-24 08:55:49
Updated webkit2 packages fix security vulnerability
2020-08-16 16:53:46
archlinux
archlinux
[ASA-202007-1] webkit2gtk: multiple issues
2020-07-14 00:00:00
ubuntu
ubuntu
WebKitGTK vulnerabilities
2020-11-26 00:00:00
WebKitGTK+ vulnerabilities
2020-07-14 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: webkit2gtk3-2.28.3-1.fc32
2020-07-12 01:02:54
[SECURITY] Fedora 31 Update: webkit2gtk3-2.28.3-1.fc31
2020-07-18 01:09:23
freebsd
freebsd
webkit2-gtk3 -- multible vulnerabilities
2020-07-10 00:00:00
suse
suse
Security update for webkit2gtk3 (important)
2020-07-26 00:00:00
Security update for webkit2gtk3 (important)
2022-02-17 00:00:00
Security update for webkit2gtk3 (important)
2022-01-25 00:00:00
debian
debian
[SECURITY] [DSA 4724-1] webkit2gtk security update
2020-07-15 20:37:40
gentoo
gentoo
WebKitGTK+: Multiple vulnerabilities
2020-07-26 00:00:00