vulnerability
Ubuntu: USN-7279-1 (CVE-2025-24143): WebKitGTK vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:C/I:N/A:N) | Jan 27, 2025 | Feb 21, 2025 | Apr 6, 2026 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:C/I:N/A:N)
Published
Jan 27, 2025
Added
Feb 21, 2025
Modified
Apr 6, 2026
Description
The issue was addressed with improved access restrictions to the file system. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, visionOS 2.3. A maliciously crafted webpage may be able to fingerprint the user.
Solutions
ubuntu-upgrade-libjavascriptcoregtk-4-0-18ubuntu-upgrade-libjavascriptcoregtk-4-1-0ubuntu-upgrade-libjavascriptcoregtk-6-0-1ubuntu-upgrade-libwebkit2gtk-4-0-37ubuntu-upgrade-libwebkit2gtk-4-1-0ubuntu-upgrade-libwebkitgtk-6-0-4
References
- CVE-2025-24143
- https://attackerkb.com/topics/CVE-2025-24143
- CWE-862
- EUVD-EUVD-2025-3650
- UBUNTU-USN-7279-1
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-3650
- https://ubuntu.com/security/notices/USN-7279-1
- https://webkitgtk.org/security/WSA-2025-0001.html
- https://www.cve.org/CVERecord?id=CVE-2025-24143
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.