vulnerability
FreeBSD: VID-efd03116-c2a9-11ea-82bc-b42e99a1b9c3 (CVE-2020-9807): webkit2-gtk3 -- multible vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Jul 10, 2020 | Sep 19, 2020 | Dec 10, 2025 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Jul 10, 2020
Added
Sep 19, 2020
Modified
Dec 10, 2025
Description
The WebKitGTK project reports vulnerabilities: CVE-2020-9802: Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2020-9803: Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2020-9805: Processing maliciously crafted web content may lead to universal cross site scripting. CVE-2020-9806: Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2020-9807: Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2020-9843: Processing maliciously crafted web content may lead to a cross site scripting attack. CVE-2020-9850: A remote attacker may be able to cause arbitrary code execution. CVE-2020-13753: CLONE_NEWUSER could potentially be used to confuse xdg- desktop-portal, which allows access outside the sandbox. TIOCSTI can be used to directly execute commands outside the sandbox by writing to the controlling terminal’s input buffer.
Solution
freebsd-upgrade-package-webkit2-gtk3
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.