CVE-2024-40866

Опубликовано: 17 сент. 2024

Источник: debian

EPSS Низкий

Описание

The issue was addressed with improved UI. This issue is fixed in Safari 18, macOS Sequoia 15. Visiting a malicious website may lead to address bar spoofing.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
webkit2gtk	fixed	2.46.0-1		package
webkit2gtk	end-of-life		buster	package
wpewebkit	fixed	2.46.1-1		package
wpewebkit	ignored		bookworm	package
wpewebkit	ignored		bullseye	package

Примечания

https://webkitgtk.org/security/WSA-2024-0005.html

EPSS

Процентиль: 26%

0.00086

Низкий

Связанные уязвимости

CVE-2024-40866

CVSS3: 6.5

ubuntu

9 месяцев назад

The issue was addressed with improved UI. This issue is fixed in Safari 18, macOS Sequoia 15. Visiting a malicious website may lead to address bar spoofing.

CVE-2024-40866

CVSS3: 6.5

redhat

9 месяцев назад

The issue was addressed with improved UI. This issue is fixed in Safari 18, macOS Sequoia 15. Visiting a malicious website may lead to address bar spoofing.

CVE-2024-40866

CVSS3: 6.5

nvd

9 месяцев назад

The issue was addressed with improved UI. This issue is fixed in Safari 18, macOS Sequoia 15. Visiting a malicious website may lead to address bar spoofing.

GHSA-h9cp-5vvc-8wqc

CVSS3: 6.5

github

9 месяцев назад

The issue was addressed with improved UI. This issue is fixed in Safari 18, macOS Sequoia 15. Visiting a malicious website may lead to address bar spoofing.

BDU:2025-04176

CVSS3: 6.5

fstec

9 месяцев назад

Уязвимость модулей отображения веб-страниц WebKitGTK и WPE WebKit, связанная с ложным представлением критической информации пользовательским интерфейсом, позволяющая нарушителю оказать воздействие на целостность данных

EPSS

Процентиль: 26%

0.00086

Низкий