VDB
DEBIAN-CVE-2024-27851
DEBIAN-CVE-2024-27851
PUBLISHED
CVSS 8.800000190734863 HIGH
The issue was addressed with improved bounds checks. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing maliciously crafted web content may lead to arbitrary code execution.
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:13 | webkit2gtk | 0, 0 |
| Debian:12 | wpewebkit | 2.39.91-1, 2.40.0-1, 2.40.1-1 |
| Debian:12 | webkit2gtk | 2.40.2-1, 2.40.2-1~deb11u1, 2.40.3-1 |
| Debian:11 | wpewebkit | 2.38.1-1, 2.38.2-1, 2.38.2-1 |
| Debian:11 | webkit2gtk | 2.39.7-1, 2.42.2-1~deb12u1, 2.42.3-1 |
| Debian:14 | wpewebkit | 0, 0 |
| Debian:14 | webkit2gtk | 0, 0 |
| Debian:13 | wpewebkit | 0, 0 |
Exploit Intelligence
- index6.html (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v1_generated.go (github-poc)
- ios_v2_generated.go (github-poc)
- ios_v1_generated.go (github-poc)
- safari_v2_generated.go (github-poc)
Timeline
- Jun 10, 2024 CVE Published
- Apr 28, 2026 CVE Updated