CVE-2020-9948

Опубликовано: 16 окт. 2020

Источник: debian

EPSS Низкий

Описание

A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
webkit2gtk	fixed	2.30.1-1		package
webkit2gtk	ignored		stretch	package
webkit2gtk	ignored		jessie	package
wpewebkit	fixed	2.30.0-1		package

Примечания

https://webkitgtk.org/security/WSA-2020-0008.html

EPSS

Процентиль: 52%

0.00294

Низкий

Связанные уязвимости

CVE-2020-9948

CVSS3: 8.8

ubuntu

больше 4 лет назад

A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution.

CVE-2020-9948

CVSS3: 8.8

redhat

больше 4 лет назад

A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution.

CVE-2020-9948

CVSS3: 8.8

nvd

больше 4 лет назад

A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution.

GHSA-f937-gh67-6x56

CVSS3: 8.8

github

около 3 лет назад

A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution.

BDU:2020-04784

CVSS3: 8.8

fstec

больше 4 лет назад

Уязвимость компонента WebKit браузера Apple Safari, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 52%

0.00294

Низкий