Back to search
CVE-2019-6251
Published: Jan 14, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://gitlab.gnome.org/GNOME/epiphany/issues/532
x_refsource_MISC
20190411 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0002
mailing-list
x_refsource_BUGTRAQ
[oss-security] 20190410 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0002
mailing-list
x_refsource_MLIST
FEDORA-2019-d9a15be3ba
vendor-advisory
x_refsource_FEDORA
FEDORA-2019-b3ad0a302b
vendor-advisory
x_refsource_FEDORA
USN-3948-1
vendor-advisory
x_refsource_UBUNTU
https://bugs.webkit.org/show_bug.cgi?id=194208
x_refsource_MISC
https://trac.webkit.org/changeset/243434
x_refsource_MISC
FEDORA-2019-432b3dff25
vendor-advisory
x_refsource_FEDORA
FEDORA-2019-77433fc7f3
vendor-advisory
x_refsource_FEDORA
FEDORA-2019-74f7603660
vendor-advisory
x_refsource_FEDORA
openSUSE-SU-2019:1374
vendor-advisory
x_refsource_SUSE
openSUSE-SU-2019:1391
vendor-advisory
x_refsource_SUSE
GLSA-201909-05
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now