Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2021-30663

Опубликовано: 28 июл. 2021
Источник: redhat
CVSS3: 8.8

Описание

An integer overflow was addressed with improved input validation. This issue is fixed in iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, Safari 14.1.1, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution.

A flaw was found in the webkitgtk package. Affected versions of this package could allow a remote attacker to execute arbitrary code on the system caused by an integer overflow in the WebKit component. An attacker can execute arbitrary code on the system by persuading a victim to visit a specially crafted Web site.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6webkitgtkAffected
Red Hat Enterprise Linux 7webkitgtk3Affected
Red Hat Enterprise Linux 7webkitgtk4Affected
Red Hat Enterprise Linux 9webkit2gtk3Not affected
Red Hat Enterprise Linux 8webkit2gtk3FixedRHSA-2021:438109.11.2021

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=1986872webkitgtk: Integer overflow leading to arbitrary code execution

8.8 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2021-30663

CVSS3: 8.8
ubuntu
почти 4 года назад

An integer overflow was addressed with improved input validation. This issue is fixed in iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, Safari 14.1.1, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution.

nvd логотип

CVE-2021-30663

CVSS3: 8.8
nvd
почти 4 года назад

An integer overflow was addressed with improved input validation. This issue is fixed in iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, Safari 14.1.1, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution.

debian логотип

CVE-2021-30663

CVSS3: 8.8
debian
почти 4 года назад

An integer overflow was addressed with improved input validation. This ...

github логотип

GHSA-5g93-pf3w-6f59

CVSS3: 8.8
github
около 3 лет назад

An integer overflow was addressed with improved input validation. This issue is fixed in iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, Safari 14.1.1, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution.

fstec логотип

BDU:2021-05083

CVSS3: 8.8
fstec
почти 4 года назад

Уязвимость операционных систем iPadOS, tvOS, iOS, браузера Safari , вызванная целочисленным переполнением, позволяющая нарушителю выполнить произвольный код

8.8 High

CVSS3