Known Vulnerabilities for products from Webkit
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Webkit".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-22629 | Not Provided | 2025-03-27 | 2026-04-01 | |
| CVE-2020-9952 | An input validation issue was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS... | 7.1 - HIGH | 2020-10-16 | 2023-01-09 |
| CVE-2020-9951 | A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.0. Processing maliciou... | 8.8 - HIGH | 2020-10-16 | 2022-07-23 |
| CVE-2020-9948 | A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0. Processing maliciousl... | 8.8 - HIGH | 2020-10-16 | 2022-07-23 |
| CVE-2018-12294 | WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.2, is vulnerab... | 8.8 - HIGH | 2018-06-19 | 2018-10-21 |
| CVE-2018-4209 | In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12... | 8.8 - HIGH | 2019-01-11 | 2023-11-07 |
| CVE-2016-9643 | The regex code in Webkit 2.4.11 allows remote attackers to cause a denial of service (memory consumption) as demonstrated in ... | 7.5 - HIGH | 2017-03-07 | 2017-07-12 |
| CVE-2016-9642 | JavaScriptCore in WebKit allows attackers to cause a denial of service (out-of-bounds heap read) via a crafted Javascript fil... | 5.5 - MEDIUM | 2017-02-03 | 2017-07-12 |
| CVE-2010-1766 | Off-by-one error in the WebSocketHandshake::readServerHandshake function in websockets/WebSocketHandshake.cpp in WebCore in W... | 7.5 - HIGH | 2010-07-22 | 2013-02-07 |
| CVE-2009-3933 | WebKit before r50173, as used in Google Chrome before 3.0.195.32, allows remote attackers to cause a denial of service (CPU c... | 5 - MEDIUM | 2009-11-12 | 2017-08-17 |
| CVE-2008-6059 | xml/XMLHttpRequest.cpp in WebCore in WebKit before r38566 does not properly restrict access from web pages to the (1) Set-Coo... | 5 - MEDIUM | 2009-02-05 | 2017-08-08 |
| CVE-2008-1590 | JavaScriptCore in WebKit on Apple iPhone before 2.0 and iPod touch before 2.0 does not properly perform runtime garbage colle... | 6.8 - MEDIUM | 2008-07-14 | 2022-08-09 |
Known software with vulnerabilities from Webkit
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Webkit | Webkit | 2.4.11 |