CVE-2021-21806

CVSS 8.8 HIGHEPSS 2.8%

An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability.

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Productos afectados

n/a · Webkit

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1214 http://www.openwall.com/lists/oss-security/2021/07/23/1