exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:"BDU:2020-01504" OR bind:"CVE-2019-8649"

exploitDog

bind:"BDU:2020-01504" OR bind:"CVE-2019-8649"

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 12

Количество 12

BDU:2020-01504

больше 5 лет назад

Уязвимость модуля отображения WebKit операционных систем openSUSE Leap, Mac OS X, iOS, tvOS, браузера Safari, мультимедийного проигрывателя iTunes и сервиса iCloud, существующая из-за непринятия мер по защите структуры веб-страницы, позволяющая нарушителю провести атаку типа «межсайтовый скриптинг»

CVSS3: 6.1

EPSS: Низкий

CVE-2019-8649

больше 5 лет назад

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.

CVSS3: 6.1

EPSS: Низкий

CVE-2019-8649

почти 6 лет назад

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.

CVSS3: 6.1

EPSS: Низкий

CVE-2019-8649

больше 5 лет назад

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.

CVSS3: 6.1

EPSS: Низкий

CVE-2019-8649

больше 5 лет назад

A logic issue existed in the handling of synchronous page loads. This ...

CVSS3: 6.1

EPSS: Низкий

GHSA-96w8-j89g-2wmv

около 3 лет назад

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.

EPSS: Низкий

openSUSE-SU-2019:2208-1

больше 5 лет назад

Security update for webkit2gtk3

EPSS: Низкий

openSUSE-SU-2019:2207-1

больше 5 лет назад

Security update for webkit2gtk3

EPSS: Низкий

SUSE-SU-2019:2428-1

больше 5 лет назад

Security update for webkit2gtk3

EPSS: Низкий

SUSE-SU-2019:2345-2

больше 5 лет назад

Security update for webkit2gtk3

EPSS: Низкий

SUSE-SU-2019:2345-1

почти 6 лет назад

Security update for webkit2gtk3

EPSS: Низкий

ELSA-2020-4035

больше 4 лет назад

ELSA-2020-4035: webkitgtk4 security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	BDU:2020-01504 Уязвимость модуля отображения WebKit операционных систем openSUSE Leap, Mac OS X, iOS, tvOS, браузера Safari, мультимедийного проигрывателя iTunes и сервиса iCloud, существующая из-за непринятия мер по защите структуры веб-страницы, позволяющая нарушителю провести атаку типа «межсайтовый скриптинг»	CVSS3: 6.1	10% Низкий	больше 5 лет назад
	CVE-2019-8649 A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.	CVSS3: 6.1	10% Низкий	больше 5 лет назад
	CVE-2019-8649 A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.	CVSS3: 6.1	10% Низкий	почти 6 лет назад
	CVE-2019-8649 A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.	CVSS3: 6.1	10% Низкий	больше 5 лет назад
	CVE-2019-8649 A logic issue existed in the handling of synchronous page loads. This ...	CVSS3: 6.1	10% Низкий	больше 5 лет назад
	GHSA-96w8-j89g-2wmv A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.		10% Низкий	около 3 лет назад
	openSUSE-SU-2019:2208-1 Security update for webkit2gtk3			больше 5 лет назад
	openSUSE-SU-2019:2207-1 Security update for webkit2gtk3			больше 5 лет назад
	SUSE-SU-2019:2428-1 Security update for webkit2gtk3			больше 5 лет назад
	SUSE-SU-2019:2345-2 Security update for webkit2gtk3			больше 5 лет назад
	SUSE-SU-2019:2345-1 Security update for webkit2gtk3			почти 6 лет назад
	ELSA-2020-4035 ELSA-2020-4035: webkitgtk4 security, bug fix, and enhancement update (MODERATE)			больше 4 лет назад

Уязвимостей на страницу