Every CVE whose affected-product data names Webkitgtk Webkitgtk+, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (64)
CVE-2018-12911 — CVSS 9.8 (critical): WebKitGTK+ 2.20.3 has an off-by-one error, with a resultant out-of-bounds write, in the get_simple_globs functions in…
CVE-2017-1000121 — CVSS 9.8 (critical): The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate message size metadata, allowing a…
CVE-2019-8375 — CVSS 9.8 (critical): The UIProcess subsystem in WebKit, as used in WebKitGTK through 2.23.90 and WebKitGTK+ through 2.22.6 and other products, does not prevent…
CVE-2016-1854 — CVSS 8.8 (high): WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, allows remote attackers to execute arbitrary code or…
CVE-2016-1856 — CVSS 8.8 (high): WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, allows remote attackers to execute arbitrary code or…
CVE-2016-1857 — CVSS 8.8 (high): WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, allows remote attackers to execute arbitrary code or…
CVE-2016-1859 — CVSS 8.8 (high): The WebKit Canvas implementation in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1 allows remote attackers to execute…
CVE-2016-4761 — CVSS 8.8 (high): WebKitGTK+ before 2.14.0: A use-after-free vulnerability can allow remote attackers to cause a DoS
CVE-2016-1724 — CVSS 8.8 (high): WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and tvOS before 9.1.1, allows remote attackers to execute arbitrary code or…
CVE-2016-1727 — CVSS 8.8 (high): WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and tvOS before 9.1.1, allows remote attackers to execute arbitrary code or…
CVE-2016-1783 — CVSS 8.8 (high): WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to execute arbitrary code or cause a denial…
CVE-2018-4119 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4120 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4122 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4125 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4127 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4128 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4129 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4162 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4163 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4165 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4207 — CVSS 8.8 (high): In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for…
CVE-2018-4208 — CVSS 8.8 (high): In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for…
CVE-2018-4210 — CVSS 8.8 (high): In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, an array indexing issue…
CVE-2018-4212 — CVSS 8.8 (high): In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for…
CVE-2018-4213 — CVSS 8.8 (high): In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for…
CVE-2019-6234 — CVSS 8.8 (high): A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3…
CVE-2022-42826 — CVSS 8.8 (high): A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13, iOS 16.1 and iPadOS 16…
CVE-2017-2354 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. iCloud before 6.1.1 is…
CVE-2017-2355 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. iCloud before 6.1.1 is…
CVE-2017-2356 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. iCloud before 6.1.1 is…
CVE-2017-2369 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is…
CVE-2017-2373 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is…
CVE-2018-12293 — CVSS 8.8 (high): The getImageData function in the ImageBufferCairo class in WebCore/platform/graphics/cairo/ImageBufferCairo.cpp in WebKit, as used in…
CVE-2018-4101 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4114 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4118 — CVSS 8.8 (high): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2020-27918 — CVSS 7.8 (high): A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2…
CVE-2017-2360 — CVSS 7.8 (high): An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. macOS before 10.12.3 is affected. tvOS before 10.1.1 is…
CVE-2018-11712 — CVSS 7.5 (high): WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ versions…
CVE-2018-11646 — CVSS 7.5 (high): webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in…
CVE-2016-1858 — CVSS 6.5 (medium): WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, improperly tracks taint attributes, which allows…
CVE-2017-2350 — CVSS 6.5 (medium): An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is…
CVE-2018-11713 — CVSS 6.5 (medium): WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ prior to…
CVE-2018-4113 — CVSS 6.5 (medium): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4146 — CVSS 6.5 (medium): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2018-4117 — CVSS 6.5 (medium): An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on…
CVE-2016-4592 — CVSS 6.5 (medium): WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to cause a denial of service (memory…
CVE-2017-2363 — CVSS 6.5 (medium): An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is…
CVE-2017-2365 — CVSS 6.5 (medium): An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is…
CVE-2019-8813 — CVSS 6.1 (medium): A logic issue was addressed with improved state management. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3…
CVE-2019-8719 — CVSS 6.1 (medium): A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows…
CVE-2019-8625 — CVSS 6.1 (medium): A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows…
CVE-2018-4133 — CVSS 6.1 (medium): An issue was discovered in certain Apple products. Safari before 11.1 is affected. The issue involves the "WebKit" component. A Safari…
CVE-2019-8764 — CVSS 6.1 (medium): A logic issue was addressed with improved state management. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content…
CVE-2017-1000122 — CVSS 5.3 (medium): The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate certain message metadata, allowing a…
CVE-2016-4583 — CVSS 3.1 (low): WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to bypass the Same Origin Policy and…