vulnerability

Red Hat: CVE-2019-7285: webkitgtk: crafted web content leads to arbitrary code execution

Name: Red Hat: CVE-2019-7285: webkitgtk: crafted web content leads to arbitrary code execution
Creator: Red Hat
Published: 2019-12-18T00:00:00.000Z
Keywords: CVE, Red Hat, 2019, 7285, webkitgtk, no-fix-redhat-rpm-package, Severity 9

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Dec 18, 2019

Added

Jul 9, 2025

Modified

Jul 9, 2025

Description

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

Solution

no-fix-redhat-rpm-package

References

NVD-CVE-2019-7285

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report