CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
A vulnerability in the WebCore::RenderLayer::renderer function of the WPE WebKit and WebKitGTK web page display modules
is related to memory usage after it is freed. Exploitation of the vulnerability could allow
an attacker acting remotely to execute remote code
Vulnerability in WebCore::RenderLayer::setNextSibling function of WPE WebKit and WebKitGTK web page display modules is related to memory usage after its release.
WebKitGTK is related to memory usage after it is freed. Exploitation of the vulnerability could allow
an attacker acting remotely to execute remote code
Vulnerability of WPE WebKit and WebKitGTK web page display modules is related to memory usage after its release.
memory after it has been freed. Exploitation of the vulnerability could allow a remote attacker to gain access to sensitive data, compromise memory after it has been freed.
access to sensitive data, compromise its integrity, and cause a denial of service.
Vulnerability in the WebCore::RenderLayer::repaintBlockSelectionGaps function of the WPE web page display modules
WebKit and WebKitGTK is related to memory usage after it is freed. Exploitation of the vulnerability could
allow an attacker acting remotely to execute remote code
A vulnerability in the WebCore::RenderLayer::addChild function of the WPE WebKit and WebKitGTK web page display modules
is related to memory usage after it is freed. Exploitation of the vulnerability could allow
an attacker acting remotely to execute remote code
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
redos | 7.3 | x86_64 | webkit2gtk3 | < 2.36.8-1 | UNKNOWN |