VDB

CVE-2016-10222

CVE-2016-10222 PUBLISHED

runtime/JSONObject.cpp in JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 18, allows remote attackers to cause a denial of service (segmentation violation and application crash) via crafted JavaScript code that triggers a "type confusion" in the JSON.stringify function.

EPSS 0.46% · 64.7th percentile

Risk Scores

EPSS Score
0.46%
64.7th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSqtwebkit-opensource-src*, 0, *
Ubuntu:24.04:LTSqtwebkit-opensource-src5.212.0~alpha4-34ubuntu4, 5.212.0~alpha4-36, 0
Ubuntu:22.04:LTSqtwebkit-opensource-src*, 5.212.0~alpha4-14build1, 5.212.0~alpha4-13
Ubuntu:18.04:LTSqtwebkit-source0, 2.3.2-0ubuntu13
Ubuntu:16.04:LTSqtwebkit-source0, 2.3.2-0ubuntu11, 2.3.2-0ubuntu10
Ubuntu:20.04:LTSqtwebkit-opensource-src0, 5.212.0~alpha3-3, 5.212.0~alpha3-6
Ubuntu:18.04:LTSqtwebkit-opensource-src0, 5.9.1+dfsg-5ubuntu1, 5.212.0~alpha2-5build2

Timeline

  • Apr 3, 2017 CVE Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • May 17, 2022 CVE Updated
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Sep 3, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Feb 8, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 2, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›