Rapid7

vulnerability

Ubuntu: USN-7279-1 (CVE-2025-24150): WebKitGTK vulnerabilities

Try Surface Command
Back to search
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Jan 27, 2025
Added
Feb 21, 2025
Modified
Apr 6, 2026

Description

A privacy issue was addressed with improved handling of files. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3. Copying a URL from Web Inspector may lead to command injection.

Solutions

ubuntu-upgrade-libjavascriptcoregtk-4-0-18ubuntu-upgrade-libjavascriptcoregtk-4-1-0ubuntu-upgrade-libjavascriptcoregtk-6-0-1ubuntu-upgrade-libwebkit2gtk-4-0-37ubuntu-upgrade-libwebkit2gtk-4-1-0ubuntu-upgrade-libwebkitgtk-6-0-4

References

Title
Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report