Known Vulnerabilities for products from Webkit
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Webkit".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-66286 json | Not Provided | 2026-04-23 | 2026-04-23 | |
| CVE-2025-22629 json | Not Provided | 2025-03-27 | 2026-04-23 | |
| CVE-2025-13502 json | Not Provided | 2025-11-25 | 2026-04-20 | |
| CVE-2020-9952 json | An input validation issue was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS... | 7.1 - HIGH | 2020-10-16 | 2023-01-09 |
| CVE-2020-9951 json | A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.0. Processing maliciou... | 8.8 - HIGH | 2020-10-16 | 2022-07-23 |
| CVE-2020-9948 json | A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 14.0. Processing maliciousl... | 8.8 - HIGH | 2020-10-16 | 2022-07-23 |
| CVE-2018-12294 json | WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.2, is vulnerab... | 8.8 - HIGH | 2018-06-19 | 2018-10-21 |
| CVE-2018-4209 json | In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12... | 8.8 - HIGH | 2019-01-11 | 2023-11-07 |
| CVE-2016-9643 json | The regex code in Webkit 2.4.11 allows remote attackers to cause a denial of service (memory consumption) as demonstrated in ... | 7.5 - HIGH | 2017-03-07 | 2017-07-12 |
| CVE-2016-9642 json | JavaScriptCore in WebKit allows attackers to cause a denial of service (out-of-bounds heap read) via a crafted Javascript fil... | 5.5 - MEDIUM | 2017-02-03 | 2017-07-12 |
| CVE-2010-1766 json | Off-by-one error in the WebSocketHandshake::readServerHandshake function in websockets/WebSocketHandshake.cpp in WebCore in W... | Not Provided | 2010-07-22 | 2026-04-29 |
| CVE-2009-3933 json | WebKit before r50173, as used in Google Chrome before 3.0.195.32, allows remote attackers to cause a denial of service (CPU c... | Not Provided | 2009-11-12 | 2026-04-23 |
| CVE-2008-6059 json | xml/XMLHttpRequest.cpp in WebCore in WebKit before r38566 does not properly restrict access from web pages to the (1) Set-Coo... | Not Provided | 2009-02-05 | 2026-04-23 |
| CVE-2008-1590 json | JavaScriptCore in WebKit on Apple iPhone before 2.0 and iPod touch before 2.0 does not properly perform runtime garbage colle... | Not Provided | 2008-07-14 | 2026-04-23 |
Known software with vulnerabilities from Webkit
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Webkit | Webkit | 2.4.11 |