CVE-2022-32816

Опубликовано: 04 июл. 2022

Источник: redhat

CVSS3: 6.5

Описание

The issue was addressed with improved UI handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. Visiting a website that frames malicious content may lead to UI spoofing.

A vulnerability was found in webkit. This issue occurs when visiting a website that frames malicious content, which may lead to UI spoofing.

Отчет

This flaw is being rated as 'Moderate' as WebKitGTK package is shipped as a dependency for Gnome package, additionally Red Hat Enterprise Linux doesn't ship any WebKitGTK based web browser where this flaw would present a higher severity major threat.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	webkitgtk	Out of support scope
Red Hat Enterprise Linux 7	webkitgtk3	Out of support scope
Red Hat Enterprise Linux 7 Extended Lifecycle Support	webkitgtk4	Fixed	RHSA-2025:10364	07.07.2025
Red Hat Enterprise Linux 8	glib2	Fixed	RHSA-2022:7704	08.11.2022
Red Hat Enterprise Linux 8	webkit2gtk3	Fixed	RHSA-2022:7704	08.11.2022
Red Hat Enterprise Linux 8	glib2	Fixed	RHSA-2022:7704	08.11.2022
Red Hat Enterprise Linux 8	webkit2gtk3	Fixed	RHSA-2022:7704	08.11.2022
Red Hat Enterprise Linux 9	webkit2gtk3	Fixed	RHSA-2022:8054	15.11.2022

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=2238975webkitgtk: malicious content may lead to UI spoofing

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2022-32816

CVSS3: 6.5

ubuntu

больше 3 лет назад

CVE-2022-32816

CVSS3: 6.5

nvd

больше 3 лет назад

CVE-2022-32816

CVSS3: 6.5

debian

больше 3 лет назад

The issue was addressed with improved UI handling. This issue is fixed ...

GHSA-jjrw-xpw9-v3qh

CVSS3: 6.5

github

больше 3 лет назад

SUSE-SU-2022:2915-1

suse-cvrf

больше 3 лет назад

Security update for webkit2gtk3

6.5 Medium

CVSS3